Latest SIEM topics - Discuss the Elastic Stack

Topic	Replies	Views	Activity
About the SIEM category	0	2410	May 20, 2019
Refer to value lists in ES\|QL? esql	1	36	January 14, 2026
What Can I Do with Elastic SIEM Free Tier? (Capabilities and Limitations) license	2	110	November 27, 2025
Fleet server, policy, and integrations for Linux terminal	7	76	November 25, 2025
Integration of Kaspersky AV with the elastic SIEM	5	503	November 23, 2025
TypeError: t is not a function	2	60	October 31, 2025
Elastic Security Threat Match rule	6	110	October 29, 2025
O365 Logs - Single failed log in attempt multiple logs generated	3	71	October 27, 2025
Missing md5 field in Harmony Email & Collaboration integration with Elastic	2	45	September 16, 2025
Fortigate not listed under "Network events" in Security	4	109	August 21, 2025
Elastic and AlienVault OTX integration	2	117	August 21, 2025
Maximum Number of Cases Template on Elastic SIEM	3	121	August 21, 2025
Is there a way to correlate FortiGate logs?	2	106	August 17, 2025
How to expose custom fields from alert JSON in the Slack API connector?	1	68	July 18, 2025
Machine learning use case - Anomaly Detection	7	213	August 7, 2025
How to detect abnormal User behaviour (sequence of actions)	4	143	June 21, 2025
Cef log with custom udp integration	5	72	June 19, 2025
'add agent' issue	1	31	June 18, 2025
Enriching Web Filter Logs with Username from Traffic Logs Using Session ID in Fortinet Logs	1	63	June 6, 2025
Import ingest pipeline	2	65	June 3, 2025
Error in detection rule: Remote Computer Account DnsHostName Update	9	75	May 31, 2025
Wrong ML Job query packetbeat_rare_user_agent or missing event.dataset in network traffic data?	3	50	May 27, 2025
Machine Learning Detected a Suspicious Windows Event with a High Malicious Probability Score triggering on all kinds of normal processes	1	46	May 23, 2025
Firewall logs to different Datastream by type	23	223	May 22, 2025
Security Case Management Based on Parent Tenant & Subsidiary	1	35	May 22, 2025
CEF integration gives error if it encounters non-UTF-8 valuestion	1	27	May 14, 2025
Does Common Event Format (CEF) not allow a custom ingestion pipeline?	5	77	May 9, 2025
Elastic SIEM Alert hostname missing	1	62	May 5, 2025
EQL Detection Rule issues	2	124	May 2, 2025
Closing an alert in Elastic Security without using the GUI	1	117	April 21, 2025