Hello there,
i am trying to get alerts in kibana and i am looking for some use cases library if there is any.
( i am trying to build a small SIEM using ELk stack and beats)
Thank you in advance
Can you explain more what you're looking for? I don't think I'm following.
If you weren't aware, a SIEM is already bundled with the rest of the stack: https://www.elastic.co/siem
I am aware of the Siem. it is a project i am working on.
a SIEM needs a library of use Cases so it can correlates events and get alerts. I am looking for ways to create those cases or a library that already exists.
Also i was wondering on how to create rules, in order to get alerts on KIbana dashboard.
sorry if i wasn't clear earlier
This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.