Log review checklist for security incidents

Anton Chuvakin, the well-known security expert and consultant in the field of log management and PCI DSS compliance and author of many books, and Lenny Zeltser, leader of the security consulting team at Savvis and senior faculty member at SANS, have created a “Critical Log Review Checklist for Security Incidents”.

“The log cheat sheet presents a checklist for reviewing critical system, network and security logs when responding to a security incident. It can also be used for routine periodic log review,” says Chuvakin on his popular blog, where the checklist can be downloaded in HTML, PDF or DOC format.