Latest SIEM topics - Discuss the Elastic Stack

Topic	Replies	Views	Activity
About the SIEM category	0	2408	May 20, 2019
What Can I Do with Elastic SIEM Free Tier? (Capabilities and Limitations) license	1	43	October 30, 2025
Fleet server, policy, and integrations for Linux terminal	6	66	October 28, 2025
Integration of Kaspersky AV with the elastic SIEM	5	434	November 23, 2025
TypeError: t is not a function	2	59	October 31, 2025
Elastic Security Threat Match rule	6	98	October 29, 2025
O365 Logs - Single failed log in attempt multiple logs generated	3	67	October 27, 2025
Missing md5 field in Harmony Email & Collaboration integration with Elastic	2	44	September 16, 2025
Fortigate not listed under "Network events" in Security	4	108	August 21, 2025
Elastic and AlienVault OTX integration	2	102	August 21, 2025
Maximum Number of Cases Template on Elastic SIEM	3	107	August 21, 2025
Is there a way to correlate FortiGate logs?	2	91	August 17, 2025
How to expose custom fields from alert JSON in the Slack API connector?	1	61	July 18, 2025
Machine learning use case - Anomaly Detection	7	187	August 7, 2025
How to detect abnormal User behaviour (sequence of actions)	4	141	June 21, 2025
Cef log with custom udp integration	5	65	June 19, 2025
'add agent' issue	1	30	June 18, 2025
Enriching Web Filter Logs with Username from Traffic Logs Using Session ID in Fortinet Logs	1	58	June 6, 2025
Import ingest pipeline	2	62	June 3, 2025
Error in detection rule: Remote Computer Account DnsHostName Update	9	68	May 31, 2025
Wrong ML Job query packetbeat_rare_user_agent or missing event.dataset in network traffic data?	3	49	May 27, 2025
Machine Learning Detected a Suspicious Windows Event with a High Malicious Probability Score triggering on all kinds of normal processes	1	44	May 23, 2025
Firewall logs to different Datastream by type	23	200	May 22, 2025
Security Case Management Based on Parent Tenant & Subsidiary	1	33	May 22, 2025
CEF integration gives error if it encounters non-UTF-8 valuestion	1	26	May 14, 2025
Does Common Event Format (CEF) not allow a custom ingestion pipeline?	5	76	May 9, 2025
Elastic SIEM Alert hostname missing	1	57	May 5, 2025
EQL Detection Rule issues	2	115	May 2, 2025
Closing an alert in Elastic Security without using the GUI	1	107	April 21, 2025
ML anomaly detection alert	1	60	April 22, 2025