The latest articles on DEV Community by Yoav Richter (@yoavrichter). https://dev.to/yoavrichter https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3356169%2F7202c4b6-dc74-497a-9f97-db2ca749ab3e.png https://dev.to/yoavrichter en Yoav Richter Tue, 15 Jul 2025 07:43:35 +0000 https://dev.to/yoavrichter/cloudots-cloud-security-telemetry-knowledge-base-dedicated-to-cloud-logs-3jog https://dev.to/yoavrichter/cloudots-cloud-security-telemetry-knowledge-base-dedicated-to-cloud-logs-3jog <p>Hi everyone,</p> <p>I'd like to share Cloudots, a public knowledge-base we launched today!</p> <p>This knowledge base covers all cloud telemetries exist in AWS and GCP, with its security criticality, how to simulate the telemetry, and previous attacks the telemetry involved in.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fvh0jkunur5trb9fv2pj5.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fvh0jkunur5trb9fv2pj5.png" alt="Landing Page" width="800" height="662"></a></p> <p>The idea came as part of something we're working on and has been shaping from a common pain we’ve experienced: every few weeks, someone asks for a comprehensive mapping of cloud logs or a clear breakdown of what each one actually means for security investigations. We’ve felt that struggle too, piecing together scattered info, unclear sources, and inconsistent guidance.</p> <p>Cloudots is our attempt to bring all that disconnected knowledge into one place. It’s still a work in progress, but we hope it offers a useful starting point for anyone navigating cloud telemetry for detection, investigation, or audit.</p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fm9v7lbtht5v2dxn3bu7f.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fm9v7lbtht5v2dxn3bu7f.png" alt="Example 1" width="800" height="570"></a></p> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fus7orxf9uyjr1irzwbo5.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fus7orxf9uyjr1irzwbo5.png" alt="Example 2" width="800" height="593"></a></p> <p>The way these docs were created are interesting: using AI agents that simulate attacks in a sandbox environment, then gather the relevant events that help detect this attack. This gives security score to every cloud log with its mapping to the <a href="https://attack.mitre.org/" rel="noopener noreferrer">MITRE ATT&amp;CK</a> framework.</p> <p>We’d love your feedback, corrections, and contributions, and if you find it useful, that would mean a lot.</p> <p>Here’s the early access link, its open and accessible to everyone: <a href="https://cloudots-signup.brava.security/" rel="noopener noreferrer">https://cloudots-signup.brava.security/</a></p> <p>Thanks in advance!</p> cloud security aws gcp