Need to integrate threat Intel with ELK, which solution shall i look for, any opensource suggestion?

addanuj · July 5, 2018, 3:31pm

Hi All,

I am working on a project where we are trying to USE ELK as SIEM but i need some threat Intel sources which i can use as IOC and feeds to correlate SOC devices logs to detect Malicious Activities. i believe this will help me to use ELK in true terms of SIEM.

any solution which i can host locally, or any solution which i can use as open source which gets regular updates.

system · August 2, 2018, 3:32pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Threat Intel and SIEM SIEM	3	4122	December 15, 2020
Can you guys suggest some courses or training about using ELK in soc as a SIEM, XDR, threat hunting, IR or anything related to SOC please? Elastic Security	2	31	September 23, 2024
Matching threat intel to data in ELK Elasticsearch	3	1704	July 6, 2017
Threat Intelligence Platform Integration Logstash	2	1147	March 27, 2019
Enrich SIEM Data SIEM	2	1140	December 20, 2020

Need to integrate threat Intel with ELK, which solution shall i look for, any opensource suggestion?

Related topics