I'm new work with Elastic Security. I'm using the Elastic Security basic version and I want to create the detection rule with Index action.
My situation is, I created a rule to detect any connect malicious IP. This rule seems matched but I'm stuck with the Index action. I want to write the data into an index "test-ioc-match" when the rule matched.
Does anyone have an example indẽ action of this situation?