Streaming logs and cmdReporter, with Dan Griggs
Jamf After Dark
English - May 28, 2021 21:18 - 27 minutes - 52 MB - ★★★★★ - 44 ratingsTechnology Education How To apple mdm devicemanagement iphone ios ipad mac Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: Talking Security with Jamf's CISO: Aaron Kiemele
Next Episode: Jaron Bradley's Holistic Malware Detective Agency
Once upon a time, we tried to pipeline logs to centralized syslog hosts. And it was never great. Then, Apple gave us unified logging and the amount of logs skyrocketed. So the cmdReporter team took a step beyond that and built some amazing tooling to flow logs off Macs and into whatever SEIM an organization needs! Today, we talk with Dan Griggs about the philosophies, some of the tactics, and the massive case statements underneath cmdReporter! OK, so just kidding about the case statements but it was a super-fun episode!