|
Feature Request: Alert Assignment to user
|
|
2
|
450
|
September 30, 2020
|
|
Update detection rules from elastic github repository to on-premises
|
|
3
|
692
|
September 1, 2020
|
|
Rules in ElasticSIEM not create signals
|
|
5
|
561
|
May 14, 2020
|
|
Can I change the primary key for identifying hosts in the SIEM app?
|
|
4
|
613
|
September 1, 2020
|
|
Siem anomaly detection prebuild jobs
|
|
2
|
791
|
January 30, 2020
|
|
Unusual Process For a Windows Host (rare_process_by_host_windows_ecs)
|
|
5
|
555
|
July 29, 2021
|
|
Aggregating Case Information
|
|
5
|
549
|
February 11, 2022
|
|
Auditbeat docker (7.4.2) starts and then terminates with no error
|
|
2
|
775
|
December 17, 2019
|
|
EQL rules do not work but see hits
|
|
3
|
671
|
March 14, 2022
|
|
Viewing Pinned Timeline Events
|
|
2
|
774
|
November 22, 2019
|
|
Aggregation facility in the detections rules tab?
|
|
2
|
432
|
July 3, 2020
|
|
Reporting email action failure from watcher - ELK7.8
|
|
3
|
656
|
April 15, 2021
|
|
Last Seen timestamp under Hosts section appears to be incorrect
|
|
3
|
656
|
August 8, 2019
|
|
How to change query in SIEM
|
|
3
|
652
|
November 18, 2019
|
|
Watch configuration (advance watch - Jason queries for cyber security)
|
|
5
|
529
|
August 31, 2021
|
|
Edit Telnet port Activity rule
|
|
3
|
644
|
April 19, 2021
|
|
Elastic Detection Actions - any way to add fields?
|
|
2
|
416
|
April 25, 2022
|
|
Fielddata error preventing Authentications tab populating
|
|
4
|
566
|
October 2, 2019
|
|
Detection Rule Key Value Reference Url's
|
|
6
|
477
|
June 19, 2021
|
|
Update field on all SIEM detection Rules in one go
|
|
6
|
475
|
April 18, 2022
|
|
NetFlow Traffic from ASA
|
|
2
|
725
|
August 13, 2020
|
|
Opsgenie SIEM Case connector
|
|
2
|
720
|
January 19, 2021
|
|
Detection Rule - Output of a aggregation bucket should match with other types of logs in the same index
|
|
2
|
712
|
February 2, 2022
|
|
Index patterns global and per rule?
|
|
3
|
608
|
November 24, 2020
|
|
SIEM error new install
|
|
2
|
702
|
July 29, 2020
|
|
Cloudflare integration Logpull not working
|
|
3
|
607
|
June 29, 2022
|
|
EQL library where
|
|
2
|
695
|
July 10, 2021
|
|
Rule failure for Windows path exclusions?
|
|
5
|
486
|
January 6, 2021
|
|
Auditing all Linux clients with centralised server
|
|
4
|
532
|
August 7, 2021
|
|
Reduce duplicate signals/ alerts
|
|
1
|
840
|
September 26, 2021
|
|
SIEM feature request
|
|
4
|
529
|
December 8, 2020
|
|
Zeek filebeat - HTTP and TLS events not fully populating
|
|
4
|
526
|
May 9, 2020
|
|
SIEM Overview Page : Modify Security Settings Kibana
|
|
5
|
480
|
September 7, 2020
|
|
Having SIEM read windows events from non-default index pattern
|
|
3
|
586
|
August 26, 2019
|
|
Remove Ingest Processor
|
|
1
|
466
|
May 31, 2022
|
|
I want to enable the map which is present in SIEM app
|
|
1
|
828
|
January 6, 2020
|
|
Multiple index search
|
|
6
|
441
|
May 1, 2023
|
|
Conflict between ECS and SIEM authentication events visualization
|
|
3
|
583
|
February 26, 2020
|
|
SIEM > Detections will not setup
|
|
2
|
671
|
March 11, 2020
|
|
SIEM Infrastructure design
|
|
2
|
665
|
October 28, 2019
|
|
Customize Columns for SIEM Signals and External Alerts not persistent?
|
|
4
|
514
|
July 23, 2020
|
|
Create a rule to detect number of beats
|
|
5
|
468
|
May 26, 2021
|
|
Security events and rules matching
|
|
3
|
573
|
August 23, 2022
|
|
Detection rules CLI
|
|
3
|
571
|
April 29, 2021
|
|
Linux_anomalous_process_all_hosts_ecs apparently not only covering Linux, but full auditbeat
|
|
3
|
569
|
February 3, 2022
|
|
Zeek DNS Logs Into Top DNS Domains Section
|
|
2
|
652
|
August 26, 2019
|
|
Defenxor DSIEM for Event Correlation with Logstash
|
|
1
|
798
|
October 28, 2019
|
|
Rules failing
|
|
3
|
565
|
January 15, 2024
|
|
Elastic SIEM cloud data storage location? Canadian Data Residency
|
|
2
|
651
|
October 31, 2022
|
|
Detection not finding anything but same query finds them
|
|
6
|
424
|
March 27, 2021
|