Collect logs from Auditd. Auditd is a user-space component of the Linux Auditing System that records and tracks security-related events for monitoring and analysis purposes.
Most Popular
Video
Get Started with Elasticsearch
Intro to Kibana
ELK for Logs & Metrics