AWS CloudWatch Logs and Incident Response
As part of security best practices, centralizing logs from all of our resources is a critical task. In this hands-on lab, we will work with CloudWatch Logs to prepare an environment for security incident response.
By the end of this hands-on lab, we will have configured CloudWatch Logs to receive data from a number of sources, including EC2, CloudTrail, Route 53, and VPC Flow Logs. We will also analyze CloudWatch Logs using the Elasticsearch service.