Cloud Intrusion Detection System

By Google

The Cloud IDS block allows you to export Threat and Traffic security data related to GCE and GKE Workloads, from Google Cloud IDS and analyze it in Looker.

Version

v1.0.0

Release Notes

ETL Providers

Google Cloud Log Router Sink

SQL Dialects

Google BigQuery

Overview

Install this block for free by importing the project(s) from the GitHub repository linked at the top of the listing.

This is not an officially supported Google product.

The flexibility of the data model gives you the ability to perform security monitoring and analysis of your Google Cloud resources protected by Cloud IDS.

Included in the Block:

Top Traffic (by Applications)
Top Threats
Top files exfiltrated
Top CVE detected
Attackers and Target Data

Note: Before using this block: you will need to Create a BigQuery Dataset, Create a Service Account with “BigQuery Data Viewer” & “BigQuery Job User” IAM role and a create a Logs router sink configuration in Cloud Logging to make Data accessible from the Block usage.

Amazon Redshift Administration

GoogleFine-tune your Redshift deployment with a comprehensive view of performance and query analysis.Blocks

BigQuery Information Schema Performance Monitoring

GoogleMonitor and Explore your BigQuery Usage and PerformanceBlocks

Marketplace

Develop for Marketplace