Hello, I'm trying to integrate IOCs from MISP to Elastic stack (ELK) using the Filebeat Threat intel module . I'm receiving event in Analytics Discover panel of Kibana with filebeat-* toggle on: (see below image) [image] But what i receive is not populated with any intelligence from MISP. See b…

Bug: No Misp event data send to Kibana when Threat intel module used

Marius_Iversen (Marius Iversen) March 22, 2023, 1:58pm 5

The reason you are not seeing any data is this:

"message": "cannot access method/field [size] from a null def reference"

Which version of the stack are you using?

Topic		Replies	Views
Threat intel Filebeat module - I don't get any data From MISP and i don't know why Beats beats-module , filebeat	1	494	April 15, 2023
Filebeat Threat Intel Module Errors Beats painless , beats-module , filebeat , ingest-pipeline	3	775	December 17, 2022
Integration Misp using Filebeat Beats filebeat	5	451	June 17, 2022
Filebeat threat intel not showing in Kibana Kibana elastic-stack-security	1	575	March 25, 2022
[Filebeat Threat Intel] MISP doesnt show anything Kibana	3	228	September 11, 2022