Exploring Audit Logs
There are many different types of audit logs on different systems. Operating systems include regular logs that record activity on the computer, applications frequently record information in application logs based on the needs of the application, and network devices (such as firewalls) regularly record different types of data to document network activity.
This section describes many of these logs and how you can use them to identify and track activity on your network. Together, these logs can help an organization to create a comprehensive audit trail to document a significant amount of activity on individual systems and networks.
Operating System Logs
Operating systems include logs that track activity on a system, and the ...
Get SSCP Systems Security Certified Practitioner All-in-One Exam Guide now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
