What a great tool Datadog has released for detection engineering - it just works! Try it out: $ export AWS_REGION=us-east-1 $ grimoire shell -c "aws s3 ls" -o /tmp/logs When you see "Found event", press Ctrl+C. $ cat /tmp/logs Profit! #detectionengineering #Grimoire
Glad you find it useful! Feedback/suggestions for improvement welcome
Platform Engineer
4mohttps://github.com/DataDog/grimoire https://securitylabs.datadoghq.com/articles/announcing-grimoire