Adds Security features to ELK

cyberdefenders / DetectionLabELK

DetectionLabELK is a fork from DetectionLab with ELK stack instead of Splunk.

MIT License

537 stars 101 forks source link

Closed webhead404 closed 4 years ago

webhead404 commented 4 years ago

Hello,

This PR adds the capability of using Elastic Security features namely the newly released Detection Engine. A summary of the changes are below.

Add's free security features using a bare minimum configuration
Automatically creates users for the stack and copies their passwords to Kibana, Filebeat and Winlogbeat respectively.