Kubernetes audit logs are crucial for detecting misconfigurations and vulnerabilities in clusters but can be difficult to analyze due to their high volume. Alcide kAudit is a forensic tool that uses user-configured rules and machine learning algorithms to collect, analyze, and monitor Kubernetes audit logs in real time. Datadog's integration with Alcide kAudit enables users to create alerts and security rules based on kAudit logs and explore them within the context of system-wide monitoring data. The integration allows for custom security rules, log-based metrics visualization, and archiving of ingested logs in long-term cloud storage. This helps users efficiently investigate Kubernetes security incidents and minimize their impact without leaving the Datadog platform.