We are in the complex world where attacks are increasing day by day, so today the cyber intelligence depends in siem as a part of infosec (security incident and event management). Most companies depend on logs and packets to have a better view.. above 90 % of them are working with logs rather than packets.
Read full story on GBHackers