SIEM


Topic Replies Activity
About the SIEM category 1 May 20, 2019
Envoyproxy 1 August 19, 2019
Hosts tab in SIEM and WEF 12 August 19, 2019
GraphQL internal error 2 August 19, 2019
Difference between source/destination and server/client 2 August 16, 2019
Event Correlation on ELK 2 August 14, 2019
I'm not seeing any geoip data from my zeek logs in my SIEM map 3 August 12, 2019
Filebeat for Sophos XG Firewall 9 August 7, 2019
Why don't sudo events from auth.log have an event.category/event.action? 2 August 7, 2019
SIEM Hosts/All Hosts Tables Empty 12 August 5, 2019
Watcher alert, ssh auth 2 July 31, 2019
Empty DNS Fields and Tables in Network View 2 July 30, 2019
Having SIEM read windows events from non-default index pattern 3 July 29, 2019
Zeek DNS Logs Into Top DNS Domains Section 2 July 29, 2019
Inserting Custom Logs Into Siem 5 August 20, 2019
SIEM Zeek log data getting Error decoding JSON 5 August 15, 2019
FortiAnalyzer logs to SIEM 3 August 15, 2019
Failed Logins 5 August 14, 2019
SOAR for Elastic Capabilities 3 August 14, 2019
SIEM Elastic - Beta -7.2 - Cisco module - unable to see data 4 August 14, 2019
Auditbeat file integrity monitoring does not show user who made changes to file 6 August 13, 2019
Elastic SIEM integration with Ansible for Security Automation 5 August 12, 2019
Uncommon Processes 3 August 12, 2019
Drilling into Suricata data 6 August 8, 2019
Last Seen timestamp under Hosts section appears to be incorrect 4 August 8, 2019
Trouble with Index Patterns 14 August 2, 2019
Configuring SIEM 4 August 2, 2019
Netflow data ingested but not showing under SIEM | Network 4 August 1, 2019
Role to provide access to SIEM? 4 August 1, 2019
SIEM not ingesting Windows logs from servers 9 July 31, 2019