What are the use cases of EQL in elasticsearch?

jaimika_kosambia · September 21, 2023, 2:32pm

What are the use cases of EQL in elasticsearch , Please explain with example ?

Priscilla_Parodi · October 2, 2023, 9:54pm

EQL or Event Query Language is a declarative language dedicated for identifying patterns and relationships between events.

Consider using EQL if you:

Priscilla_Parodi · October 2, 2023, 9:56pm

Here are some resources that may be useful:

system · October 30, 2023, 9:57pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
What is the point of the match_all and match_none queries? Elasticsearch eql-elastic-query-language	1	491	March 18, 2022
What is the point of using EQL to correlate log? Elasticsearch eql-elastic-query-language	2	619	February 15, 2022
Using eql to query for custom log Elasticsearch eql-elastic-query-language	2	528	March 23, 2022
Any interest in an Elasticsearch query language (EQL)? Elasticsearch	12	2788	July 5, 2017
Why doesn't Observability have EQL Alerts? Kibana elastic-stack-alerting	0	81	June 11, 2024