12:[["$","$La0",null,{"props":{"lessonContent":{"components":[{"type":"MarkdownEditor","children":[{"text":"/ma"}],"mode":"edit","content":{"version":"2.0","text":"**Logging** is the recording of activities performed by individuals and IT assets. \n\n# Definitions\n\nFor each logged event, the following table lists the minimum properties that should be recorded.\n\n\n","mdHtml":"

Logging is the recording of activities performed by individuals and IT assets.

Definitions

For each logged event, the following table lists the minimum ...

","cursorPosition":98,"comp_id":"Vqz_cftBKIJ-vzrfCNHP8"},"iteration":0,"hash":0,"saveVersion":10,"contentID":"_fO0sahC3Y5ZKaKN6k48y"},{"type":"Table","mode":"edit","content":{"version":"2.0","comp_id":"hsn1QuWgZLwsSSrycTuP8","numberOfRows":5,"numberOfColumns":2,"columnWidths":[96,334],"data":[["

Term

","

Definition

"],["

Who

","

The source of the action, a user, system, or process.

"],["

What

","

A description of the action taken.

"],["

When

","

When the event took place, providing a timestamp that’s synchronized across systems.

"],["

Where

","

The object involved or acted upon to perform an action.

"]],"mergeInfo":{},"customStyles":[[{},{}],[{},{}],[{},{}],[{},{}],[{},{}]],"template":1,"title":"Properties of log events","titleAlignment":"align-center"},"iteration":0,"hash":1,"children":[{"text":""}],"saveVersion":5,"contentID":"hR9TMFS3-Q8xpQSIoLcSa"},{"type":"SlateHTML","content":{"html":"

","comp_id":"zdbbYVcunVD7sYNQrvUbw"},"hash":2},{"type":"MarkdownEditor","mode":"edit","content":{"version":"2.0","text":"Each log event should describe who did what, and when and how it was done.\n\n \n# Importance of logging\n\nLogging gives an organization the ability to do the following:\n\n- Monitor the actions of employees, systems, and software.\n \n\n- Provide valuable insight that can be used to research activities, such as security events that are potential security incidents.\n\nThe news cycle regularly provides examples of successful attacks that include a prolonged presence on a network. This means malware and other compromises ran undetected. Ensuring that systems perform effective logging and capturing those events in an actively monitored centralized log repository, is key to detecting malicious activity like this.\n\n\n\n\n\n","mdHtml":"

Each log event should describe who did what, and when and how it was done. ...

\n","cursorPosition":56,"comp_id":"fD49hiaElBv0rIVd2B8pf"},"iteration":0,"hash":3,"children":[{"text":""}],"saveVersion":2,"contentID":"JXqCmQyW_P4cRG4IJ_iaD"}],"summary":{"title":"Logging","titleUpdated":true,"description":"Explore the role of logging in cyber security by understanding how to record who performed which actions, when, and how. Learn to monitor employees and systems, detect malicious activities, and preserve log data integrity for investigations."},"darkModeContent":["$a1"],"content":["$a1"]},"isPreviewLesson":false,"pageType":"collection_lesson","aiCoachVideoUrl":"https://youtu.be/kgl8y9J3O6c","collectionDetailsSSR":{"title":"Cyber Security Best Practices for Developers","summary":"Modern computer systems are almost universally connected, which creates wider attack surfaces well beyond code to users, hardware, and more. Securing systems is thus a fundamental skill for modern software engineers.\n\nThis course is a comprehensive introduction to cyber security best practices. You’ll start with an overview of common threats and vulnerabilities, as well as high-level concepts like privilege, integrity, logging, and mediation. With these concepts in mind, you’ll then learn common protection mechanisms and defense strategies from endpoint protection to firewalls, gateways, and proxy servers. Next, you’ll learn monitoring and detection techniques, alerts, and event management. Finally, when you detect a threat, you’ll know how to respond with support tickets, data preservation, and change management.\n\nBy the end of this course, you’ll have a better understanding of modern cyber security practices and a clear roadmap to implementing these as a developer.","details":"","clos":["A deep understanding of the various security threats in modern information technology (IT)","A working knowledge of the modern techniques to maintain cyber security","A modern approach to monitor, detect, and respond to cyber security incidents","A working understanding of the procedures to document security incidents"],"arabic_available":false,"page_tags":{"4757214962647040":"","5406767328002048":"","6273312782548992":"","4602653484515328":"","6637425178181632":"","5915724073140224":"","5501166850408448":"","5814125011140608":"","5038771610845184":"","5844439025319936":"","5781128657240064":"","6602986687561728":"","6367356125446144":"","6599888875290624":"","5127218006589440":"","6701214267342848":"","5275728514121728":"","4933976556306432":"","4806719293358080":"","5139299414048768":"","5286952538734592":"","5902329814974464":"","6576729472106496":"","5069370636369920":"","5194807772708864":"","6088162178236416":"","6433880605458432":"","5697122183938048":"","5002665297969152":"","4736548452433920":"","4518252444647424":"","5100650009985024":"","4984859101757440":"","6292843676565504":"","6064226594717696":"","5230935058677760":"","6187803809677312":"","6376115073712128":"","5813455164801024":"","4713936121495552":"","6314672311762944":"","6711717207212032":"","5249653499232256":"","6343902919655424":"","5271785398599680":"","5993929522806784":"","5896437456175104":"","5998439372685312":"","4746423321231360":"","5034635054809088":"","4940007932690432":"","5846114867871744":"","5012988620963840":"","6349581839499264":"","6407862633103360":"","6180525551386624":"","4668554624630784":"","6377494211198976":"","6296246583296000":"","6715964980985856":"","5339416151457792":"","6233568263274496":""},"collection_toc_is_enabled":true,"page_count":null,"docker":{"container":{"file":{},"imageName":"","buildStatusUrl":"","buildLogUrl":"","track":false},"envs":[],"jobs":[],"testRunners":[],"version":3,"loaded":true},"discounted_price":null,"cover_image_id":4531662755201024,"cover_image_metadata":"{\"width\":1024,\"height\":512,\"sizeInBytes\":76259,\"name\":\"Cyber Security Basics.png\"}","cover_image_serving_url":"/v2api/collection/10370001/5933990267060224/image/4531662755201024","tags":["Security","Cyber Security","Network Security"],"intro_video_url":"","intro_video_thumbnail_url":"","aggregated_widget_stats":{"projects":0,"assessments":0,"SlateHTML":73,"codeExerciseCount":0,"codeRunnableCount":1,"codeSnippetCount":7,"illustrations":64,"MarkdownEditor":160,"MxGraphWidget":64,"Columns":0,"Quiz":31,"Table":8,"Permutation":5,"SpoilerEditor":3,"Code":3,"TerminalWidget":1,"WebpackBin":0,"StructuredQuiz":0,"Notepad":0,"AINotepad":1,"cloudlabs":0},"default_themes":{"code_themes":{"Code":"default","Markdown":"default","RunJS":"default","SPA":"default","isForced":{"Code":false,"Markdown":false,"RunJS":false,"SPA":false}}},"api_keys":{"api_keys":[]},"skills":[],"testimonials":[],"licensing":null,"target_audience":"beginner","author_id":"10370001","collection_id":"5933990267060224","approval_status":3005,"price":29,"is_private":false,"path_type":"regular","organization_id":null,"is_mini":false,"is_priced":true,"brief_summary":"Explore cybersecurity fundamentals, major threats, defense methods including firewalls, and the monitoring and response skills needed to create secure software.","approval_update_time":"2022-11-22T17:54:37.407Z","rating_visibility":true,"update_last_published_on_homepage":true,"show_developed_by":true,"udata_files":[],"CodeThemes":{"Code":"default","Markdown":"default","RunJS":"default","SPA":"default","isForced":{"Code":false,"Markdown":false,"RunJS":false,"SPA":false}},"is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"collection_type":"collection","adaptive_learning_mode":false,"HLOs_to_toc":{},"is_guide":false,"read_time":14400,"allow_logged_out_executions":false,"unique_live_widget_urls":false,"metadata_status":101,"palified_version":null},"pageSummarySSR":{"title":"Logging","description":"Explore the role of logging in cyber security by understanding how to record who performed which actions, when, and how. Learn to monitor employees and systems, detect malicious activities, and preserve log data integrity for investigations.","discourse_page_url":"https://discuss.educative.io/tag/logging__basics-of-security__cyber-security-best-practices-for-developers?open=true&ctag=cyber-security-best-practices-for-developers__don-franke&cslug=cyber-security-best-practices-for-developers&pslug=logging"},"adaptiveLearningConfigConstantSSR":0,"allowAllLessonPreview":false,"lockedBannerStatsSSR":{"b2cTrialStats":{"is_b2c_trial_active":true,"b2c_trial_active_duration":21,"b2c_trial_categories":"$a5"},"b2cStatus":100,"learnerTags":"$a6","workStats":1640,"interviewWorksStats":104,"inL2cStarterPack":false,"l2cWorkStats":46,"enableL2cStarterPackPaymentWidget":"false"},"pageTocSSR":"

","authorId":"10370001","collectionId":"5933990267060224","pageId":"5844439025319936","isCollectionPageLockedCachingEnabled":true,"aceFeatureFlags":{"enableAceEditor":true,"enableAceEditorForAnswers":true},"serverConfigConstants":{"enable_notepad_prompt_ai":"$undefined"},"codeFeatureFlags":{"enableCodeCodeTabRedesign":"3"},"meta":{"type":["Article","TechArticle"],"title":"Understanding Logging in Cyber Security Fundamentals","name":"Cyber Security Best Practices for Developers","description":"Learn the importance of logging in cyber security, including monitoring activities, detecting threats, and preserving log data integrity.","image":"https://educative.io/api/collection/10370001/5933990267060224/image/4531662755201024.png","isAccessibleForFree":false,"keywords":"$a6","provider":"Educative","publisher":"Educative","id":"courses/cyber-security-best-practices-for-developers/logging","author":"Educative","educationalLevel":"beginner","noIndex":false,"isForcedNoIndex":false,"noFollow":false,"redirectInfo":{"isDeletedCollectionPageRedirectable":false},"page_titles":{"4757214962647040":"Course Objectives and Intended Audience","5406767328002048":"Introduction: Simplify Security Practices","6273312782548992":"Use a Risk-based Approach","4602653484515328":"General Security Concepts","6637425178181632":"Least Privilege","5915724073140224":"Separation of Duties","5501166850408448":"Confidentiality","5814125011140608":"Integrity","5038771610845184":"Keep it Simple","5844439025319936":"Logging","5781128657240064":"Defense in Depth","6602986687561728":"Fail Securely","6367356125446144":"Complete Mediation","6599888875290624":"Obscurity is Not Security","5127218006589440":"The Maturity Levels of Security","6701214267342848":"Summary: Basics of Security","5275728514121728":"Introduction: Protection from Cyber Attacks","4933976556306432":"Endpoint Protection","4806719293358080":"Configuration Management Database","5139299414048768":"Antivirus","5286952538734592":"Host-based Intrusion Detection System","5902329814974464":"Host-based Intrusion Prevention System","6576729472106496":"File Integrity Checker","5069370636369920":"Host-based Firewall","5194807772708864":"Secure Memory","6088162178236416":"Digital Certificates","6433880605458432":"Network Protection","5697122183938048":"Firewalls","5002665297969152":"Network Intrusion Prevention System","4736548452433920":"Malware Prevention System","4518252444647424":"Email Gateway","5100650009985024":"Internet Proxy","4984859101757440":"Jump Server","6292843676565504":"User Awareness and Education","6064226594717696":"Summary: Protect","5230935058677760":"Introduction: Detect Cyber Attacks","6187803809677312":"Continuous Monitoring","6376115073712128":"Alerts","5813455164801024":"Security Information and Event Management","4713936121495552":"Reporting","6314672311762944":"Network Activity","6711717207212032":"Vulnerability Scanning","5249653499232256":"Cyber Intelligence","6343902919655424":"Indicators of Compromise","5271785398599680":"Domain Names","5993929522806784":"IP Addresses, File Hashes, and Email","5896437456175104":"Summary: Detect","5998439372685312":"Endpoint Detection and Response","4746423321231360":"Introduction: Respond to Cyber Attacks","5034635054809088":"Event Handling","4940007932690432":"Use Cases","5846114867871744":"Support Tickets","5012988620963840":"Incident Response","6349581839499264":"Data Preservation","6407862633103360":"Tabletop Exercises and Lessons Learned","6180525551386624":"Change Management","4668554624630784":"Summary: Respond","6377494211198976":"Course Summary","6296246583296000":"Challenge — Information Flow","6715964980985856":"Challenge—Events","5339416151457792":"Challenge — Definitions","6233568263274496":"Challenge — OSI Layers"},"is_marked_for_deletion":false,"transition_page_title":"","is_redirectable":false,"deleted_course_lesson_redirect":{"author_id":null,"collection_id":null,"page_id":null,"redirect_url_slug":null},"metadata_status":101,"additional_course_alternatives":[]},"requestUrl":"/courses/cyber-security-best-practices-for-developers/logging","requestUrlInfo":{"authorId":10370001,"collectionId":5933990267060224,"pageId":5844439025319936,"courseUrlSlug":"cyber-security-best-practices-for-developers","pageUrlSlug":"logging"},"isExternalContent":false}}],[["$","script",null,{"id":"generate-data","type":"application/ld+json","dangerouslySetInnerHTML":{"__html":"$a7"}}],false,"$undefined"]]