Back to Blog

Tag: Elastic

Rule Deployment into a Data Plane 2 min read SOC Prime Platform Rule Deployment into a Data Plane by Steven Edwards From IOCs to Queries: How Uncoder AI Automates Threat Intelligence Action 2 min read SOC Prime Platform From IOCs to Queries: How Uncoder AI Automates Threat Intelligence Action by Steven Edwards Elasticsearch: Cluster Status is RED 1 min read Knowledge Bits Elasticsearch: Cluster Status is RED by Oleksandr L Generating a CSR and Using an External Certificate with Elasticsearch 3 min read Knowledge Bits Generating a CSR and Using an External Certificate with Elasticsearch by Oleksandr L Handling the Dynamic Pruning Failure in Cardinality Aggregations in Elasticsearch 2 min read Knowledge Bits Handling the Dynamic Pruning Failure in Cardinality Aggregations in Elasticsearch by Oleksii K. Making Use of Building Block Rules in Elastic 1 min read Knowledge Bits Making Use of Building Block Rules in Elastic by Adam Swan Elastic Flattened Fields Explained 1 min read Knowledge Bits Elastic Flattened Fields Explained by Adam Swan Detecting Network Spikes Identified by WAF for the Elastic Stack Platform 2 min read SIEM & EDR Detecting Network Spikes Identified by WAF for the Elastic Stack Platform by Alex Verbniak Elastic for Security Analysts. Part 1: Searching Strings. 9 min read SIEM & EDR Elastic for Security Analysts. Part 1: Searching Strings. by Adam Swan Proactive detection content: CVE-2019-0708 vs ATT&CK, Sigma, Elastic and ArcSight 10 min read CVEs Proactive detection content: CVE-2019-0708 vs ATT&CK, Sigma, Elastic and ArcSight by Andrii Bezverkhyi