Need to integrate threat Intel with ELK, which solution shall i look for, any opensource suggestion?


(Anuj Shrivastava) #1

Hi All,

I am working on a project where we are trying to USE ELK as SIEM but i need some threat Intel sources which i can use as IOC and feeds to correlate SOC devices logs to detect Malicious Activities. i believe this will help me to use ELK in true terms of SIEM.

any solution which i can host locally, or any solution which i can use as open source which gets regular updates.


(system) #2

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.