-
## Description
In 7.14 we are releasing a prototype capability for surfacing risky hosts from a user’s environment. SOC Analysts can leverage host-based contextualization while triaging associated…
-
**Describe the enhancement:**
Hi,
basically there are a lot of Windows Event Log entries that are unnecessarily long and do take away a lot of storage.
Let's take the following event log entry …
-
Dear Community,
We are going to build a MISP in our SOC service and we have a few questions about the functional / technical architecture best practices.
**Our needs are:**
- Share events insid…
-
Bloomberg and others report that Apple is developing its own ARM processors for use in Macs starting in 2021, gradually replacing the current Intel processors in various Mac models.
When Apple …
-
``` r
library(dplyr, warn.conflicts = FALSE)
library(DBI)
Sys.setenv(PGDATABASE = "crsp", PGHOST = "10.101.13.99")
Sys.setenv(PGUSER = "yanzih1", PGPASSWORD = "temp_20190711")
pg %
mutat…
-
Some suggestions:
More IP reputation sources, maybe operating individually but have 'scoring' option that weights them based on total results?
- https://docs.abuseipdb.com/#introduction
- https:/…
-
**Describe the problem**
Suggesting the integration of Search Guard Community Edition with HELK for :
- Role-Based User management for SOC analysts.
- Kibana Session Management.
- Index-Level se…
-
Hi guys, I am really thrilled about the introduction of 'occupationalCategroy' now allowing for multiple occupational classifications to be used.
One thing that I am still wondering is how to deal…
-
Note to date.
- PKCS#12
- Search Guard 101
- Elasticsearch & Nginx
- Quick Start Elastic APM Server & Python Agent
- Logstash TNT
- Snapshot/Restore w/ GCS
Jymit updated
5 years ago
-
**Elasticsearch version** (`bin/elasticsearch --version`):
Version: 6.0.0-rc1, Build: b9c0df2/2017-09-25T19:11:45.815Z, JVM: 1.8.0_121
**JVM version** (`java -version`):
java version "1.8.0_1…