Alert to connectors

dlazure · June 7, 2022, 6:25pm

Hi,

I am sending elastic security alerts to microsoft teams.

I am using suricata for IDS and the alerts are sending fine, however, it always show External Alerts as the name. It does not provide the real alert name.

Instead of showing "A network trojan has been detected" it's showing External Alert.

Any way to show more details on alerts generated by suricata or any other external plugin on a connector?

Thank you

system · July 5, 2022, 6:26pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
The suricata results shown on the [filebeat dashboard] are different from the results shown in the [security -> alerts] on kibana SIEM	2	52	October 29, 2024
Suricata Rule Elastic Security	1	245	November 4, 2022
Trying to send all security alerts to a custom webhook Elastic Security	3	24	October 3, 2024
Threat hunting with suricata, ElasticSecurity SIEM	2	741	June 14, 2021
SURICATA LOGS NOT SHOWING UP IN NETWORK EVENTS IN ELASTIC SIEM Endpoint Security	14	2439	February 11, 2022

Alert to connectors

Related topics