Is there some type of general Suricata rule for Elastic that will create a detection alert in Elastic SIEM everytime that the suricata rules goes off.
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Threat hunting with suricata, ElasticSecurity | 2 | 817 | June 14, 2021 | |
| Issue with rules creation | 15 | 1867 | May 5, 2022 | |
| Drilling into Suricata data | 5 | 2255 | August 8, 2019 | |
| Elastic SIEM. Security rules doesn't work | 12 | 2180 | December 27, 2021 | |
| What can Elastic SIEM be used for? | 1 | 1715 | November 4, 2022 |