Hello!
Thank you for your response. I do not expect to find much CC information in our logs as we already try to strip that before it gets ingested. This is more for reassurance than anything else. My plan would be to run a regex to find any string of numbers between 14-16 characters (VISA) in logs and store that in a payload and then run a second regex against the payload for actual credit card parameters. Hoping this will reduce the cost of the regex.