Dashboard: GitHub Security Log Activity Dashboard
This dashboard answers the following questions:
- What is the total number of security log events in my GitHub account?
- How many failed login attempts have occurred?
- What actions occur most frequently in the security log?
- How are MFA-related events trending over time?
- How are failed login attempts trending over time?
- Which integrations are generating the most security log activity?
This dashboard contains 2 cards.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/tailpipe-mod-github-security-log-detectionsStart the Powerpipe server:
powerpipe serverOpen http://localhost:9033 in your browser and select GitHub Security Log Activity Dashboard dashboard.
You could also snapshot and share results via Turbot Pipes:
powerpipe loginpowerpipe dashboard run github_security_log_detections.dashboard.activity_dashboard --shareQueries
This dashboard uses the the following queries:
select action as "Action", count(*) as "Events"from github_security_loggroup by actionorder by "Events" desclimit 10;