Defender for Endpoint to Azure Event Hub to Elasticsearch?

mathurin68 · November 22, 2022, 5:53pm

Our Defender for Endpoint Device tables are around 1TB a day, I'll never get the money to use Sentinel so I'm looking for an alternative.

Is there no way to use Azure Event Hubs with Elasticsearch? Stream the events from the Defender for Endpoint api to Azure Event Hub and then into an Elasticsearch cluster?

Is this even possible?
Thanks!

system · December 20, 2022, 5:54pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Azure IOT Hub data to Elasticsearch cluster Elasticsearch	2	1138	November 5, 2019
Elastic Agent integration for Azure IoT log events forwarding to Elasticsearch Elastic Agent	1	208	September 16, 2023
Azure Event Hub Explanation Elastic Agent	3	624	March 1, 2023
How to use logstash to get the data from Azure storage or Event Hub Logstash	1	266	June 30, 2020
Export data from Elasticsearch to Azure Blob Elasticsearch	1	653	April 28, 2020

Defender for Endpoint to Azure Event Hub to Elasticsearch?

Related topics