Looker

Marketplace

Develop for Marketplace

Blocks

Cloud Intrusion Detection System

By Google
The Cloud IDS block allows you to export Threat and Traffic security data related to GCE and GKE Workloads, from Google Cloud IDS and analyze it in Looker.
The Cloud IDS block allows you to export Threat and Traffic security data related to GCE and GKE Workloads, from Google Cloud IDS and analyze it in Looker.

Version

v1.0.0

Category

Blocks

ETL Providers

Google Cloud Log Router Sink

SQL Dialects

Google BigQuery

Overview

Install this block for free by importing the project(s) from the GitHub repository linked at the top of the listing.

The flexibility of the data model gives you the ability to perform security monitoring and analysis of your Google Cloud resources protected by Cloud IDS.

Included in the Block:

  • Top Traffic (by Applications)
  • Top Threats
  • Top files exfiltrated
  • Top CVE detected
  • Attackers and Target Data

Note: Before using this block: you will need to Create a BigQuery Dataset, Create a Service Account with “BigQuery Data Viewer” & “BigQuery Job User” IAM role and a create a Logs router sink configuration in Cloud Logging to make Data accessible from the Block usage.

Related Content

Amazon Redshift Administration

GoogleFine-tune your Redshift deployment with a comprehensive view of performance and query analysis.Blocks

BigQuery Information Schema Performance Monitoring

GoogleMonitor and Explore your BigQuery Usage and PerformanceBlocks
© 2021 Looker Data Sciences, Inc.
Privacy | Terms | Cookies