Threat Stack Cloud Security Platform Alerts and Data
What are your impressions of the solution’s ability to consume alerts and data in third party tools (via APIs and export into S3 buckets)?
The solution's ability to consume alerts and data in third-party tools, via APIs or via export into S3 buckets, is working very well. We use the API to send monitoring to PagerDuty. And we've started using the API into other systems. We have it going out to a Slack channel, we've got some going into our automation. We're doing more and more with the alerting now. We're working directly with Threat Stack to use their APIs as they've recently been expanded. We're logging into S3 to do a little more in-depth research on what our alerts are, and we're also consuming CloudTrail events, which is a fairly recent update to Threat Stack, enabling us to alert on suspicious activity in CloudTrail.View full review »
Being able to hook right into my AWS was awesome and installing the agent is super slick.View full review »