Need to integrate threat Intel with ELK, which solution shall i look for, any opensource suggestion?

addanuj · July 5, 2018, 3:31pm

Hi All,

I am working on a project where we are trying to USE ELK as SIEM but i need some threat Intel sources which i can use as IOC and feeds to correlate SOC devices logs to detect Malicious Activities. i believe this will help me to use ELK in true terms of SIEM.

any solution which i can host locally, or any solution which i can use as open source which gets regular updates.

system · August 2, 2018, 3:32pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Threat Intel and SIEM SIEM	3	4109	December 15, 2020
Can you guys suggest some courses or training about using ELK in soc as a SIEM, XDR, threat hunting, IR or anything related to SOC please? Elastic Security	2	30	September 23, 2024
Threat Intelligence Platform Integration Logstash	2	1147	March 27, 2019
Enrich SIEM Data SIEM	2	1137	December 20, 2020
SOF-ELK? Elastic Community and Ecosystem	1	679	June 10, 2020

Need to integrate threat Intel with ELK, which solution shall i look for, any opensource suggestion?

Related Topics