search

outflanknl / RedELK

Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
BSD 3-Clause "New" or "Revised" License
2.35k stars 371 forks source link

Glibc filebeat errors #263

Closed MarcOverIP closed 1 year ago

MarcOverIP commented 2 years ago

There are glibc related issues with some filebeat versions. More info: https://kifarunix.com/how-to-fix-filebeat-glibc-related-errors/

Solution is to upgrade the ELK stack to at least 7.17.2

MarcOverIP commented 1 year ago

Let's try to move the stack to the latest 7.x version: 7.17.9. Quick check shows no breaking changes.

@fastlorenzo also needs updating of the Kibana app.