Hi,
I deployed Winlogbeat on my Windows boxes, Windows security logs are shipping to Elasticsearch directly, I can see them in Kibana. Now, is there any benefit to ship logs to ES via logstash or I can do the same job by tweaking Winlogbeat's template?