issues
search
philhagen
/
sof-elk
Configuration files for the SOF-ELK VM
GNU General Public License v3.0
1.47k
stars
276
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
IIS log parsing fails for exchange iis logs: likely due to slash in username
#235
kgeil
closed
2 years ago
5
First Ansible script failing
#234
xme
closed
2 years ago
1
Unable to download the pre-packaged VM from the link provided.
#233
Benjamyn93
closed
2 years ago
0
cant download vm
#232
bobvendzo
closed
2 years ago
1
spelling error
#231
randomaccess3
closed
2 years ago
0
Fix in the installation of logstash plugins
#230
fmurer
closed
2 years ago
1
Plugin installation
#229
FrancescoFaenzi
closed
3 years ago
4
Download link( http://for572.com/sof-elk-vm) temporarily down?
#228
C0ubv9
closed
3 years ago
3
Update Azure logstash parser to additional auditlog fields
#227
Pierre450
closed
3 years ago
0
Update README.md
#226
mjnbrn
closed
3 years ago
0
How to ingest a pcap file
#225
antmar904
closed
3 years ago
2
Force symlink creation in TASK [filebeat : Configure filebeat] when f…
#224
negrusti
closed
3 years ago
0
Fix TASK [cerebro : Open firewall ports] when firewalld and it's Pyth…
#223
negrusti
closed
3 years ago
0
geoipupdate 2.5.0 is getting installed which requires the old key format
#222
negrusti
closed
3 years ago
0
Ansible control machine can be different from SOF_ELK machine
#221
negrusti
closed
3 years ago
0
Unable to use development configuration files
#220
liyin00
closed
3 years ago
1
Handle winlogbeat type
#219
birdman4512
opened
3 years ago
1
Feasibility of snapshot/remove indices for classroom usage
#218
philhagen
closed
2 years ago
2
Timezone probem
#217
edvrfn
closed
2 years ago
12
De-FOR572 the intro dashboard
#216
philhagen
closed
3 years ago
0
GCP LogStash Parser - authorization_info Field
#215
joshlemon
closed
2 years ago
1
Update 6950-gcp.conf
#214
joshlemon
closed
3 years ago
0
Update 6950-gcp.conf
#213
joshlemon
closed
3 years ago
0
update templates for public vs course-specific releases
#211
philhagen
opened
3 years ago
1
use input scrubber?
#210
philhagen
closed
10 months ago
2
Add remote GCP consumption via pub/sub
#209
philhagen
opened
3 years ago
0
Update 6100-httpd.conf
#208
joshlemon
closed
3 years ago
1
use json output for nfdump data files
#207
philhagen
opened
3 years ago
1
SonicWall syslogs
#206
jcclare
opened
3 years ago
0
Windows Event Logging (Winlogbeat)
#205
mtvasuvius
closed
3 years ago
5
VMPC Settings in distributed VM fail on Big Sur
#204
philhagen
closed
2 years ago
0
Handle Azure VPC Flow records
#203
philhagen
closed
3 years ago
0
Parse Azure Activity Logs
#202
philhagen
closed
3 years ago
0
supporting passivedns json
#201
anelshaer
closed
3 years ago
0
Elastalert failure
#200
maxy-walker
closed
3 years ago
2
where I put a logstats.json imported from another system?
#199
d1s4st3r
closed
4 years ago
1
I need a root password, would it be possible have it?
#198
d1s4st3r
closed
4 years ago
0
Update 6100-httpd.conf
#197
joshlemon
closed
4 years ago
0
Is elastalert index created as shipped? should be
#196
philhagen
closed
3 years ago
0
Consider monthly indexes instead of daily
#195
philhagen
closed
3 years ago
0
disable GC logging
#194
philhagen
closed
3 years ago
1
Create a "flow_duration" field if it is not already present
#193
philhagen
closed
4 years ago
0
Uploading IIS Logs
#192
ghost
closed
1 year ago
2
.plaso reading date as the file creation date, rather than date of record
#191
CameronMTr
closed
4 years ago
5
add protocol slice to src/dst port on netflow dashboard
#190
philhagen
closed
3 years ago
0
Syslog (Windows Event Log)
#189
nkl0x55
closed
4 years ago
15
no ingest
#188
naderhabbbab
closed
4 years ago
3
VirtualBox VM Template
#187
angry-bender
closed
4 years ago
2
6601-plaso.conf windows events failing grok
#186
TjebbeVQ
opened
4 years ago
3
typo fix
#185
umairqamar
closed
4 years ago
1
Previous
Next