I am trying to create a successful brute force attempts. For that I am writing a ruby code in logstash.
Is there any other method like writing a query in elasticsearch, so that I could meet the logic of the successful brute force attempt [Brute force attempt by a particular user on a particular IP]?
I have already created many filters in my logstash and I don't want to overload it. I have tried the query in kibana but I am not able to meet it there.