1.Setting up the ELK stack
2.Virtualbox
3.Forwarding logs from the virtual machine to ELK
4.Constructing rules for ransomware detection
5.Isolation, containment, remediation, recovery continuous improvement and maintenance
6.Configuring SMTP service for email alerts
Hi guys i need help to quick start this project
I recommend taking a look at this post The Elastic Container Project for Security Research | Elastic where you can configure your Stack in container. In this channel, on Telegram, there is a collection of posts that can give you a guide on what you need: Telegram: Contact @elasticsecurity
In addition, I recommend taking a look at this webinar that has a step by step of what you need.
https://www.elastic.co/en/virtual-events/threat-hunting-with-the-elastic-stack
Thanks but the webinar does not exist
Please try this link
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.
© 2020. All Rights Reserved - Elasticsearch
Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries.