In the last couple of blog posts[1][2] we've been exploring how to use the ELK stack as a forensic logging platform. We also had a couple of posts on deploying some AlienVault features [3][4]. In this post we explore a quick and easy way to integrate between the two systems. Apart from the flexible querying … Continue reading AlienVault ELK Integration
In a previous blog post we explored how to use the ELK stack to build a fast, flexible and efficient log forensics platform. In this post we'll move beyond the basics and address some issues that are specific to configuring ELK to be a better log forensics platform. In particular, we'll be addressing querying - specifically running regex … Continue reading Beyond the basics : Logging Forensics with ELK (Elasticsearch, Logstash, Kibana)
David Vassallo's Blog 
You must be logged in to post a comment.