I'm looking for alternatives to using Athena to read and sort my CloudTrail logs. Specifically, I want to find out who created resources about a year ago. Any suggestions on other tools or methods I could use?
4 Answers
One great option is using CloudWatch Logs Insights. It works pretty well for digging through logs, and I think it was developed with feedback from organizations like ours! It can also be used for other log types, like VPC Flow Logs and Lambda Logs, which is really handy.
AWS Detective is another option built specifically for this type of analysis. It could be a good tool to help you sort through those logs effectively.
You might also want to consider using CloudTrail Lake. You can load your logs there and run a simple SQL query to get what you need. It's not too complicated to set up and can really streamline the process.
Absolutely! You can write a Lambda function to process and filter your logs. Keep in mind though, the data can be quite large, so just make sure to plan accordingly if you go this route.
That's a solid suggestion! Detective actually makes it easier to visualize relationships in the data.