Getting started with the Open Hunting Stack in Hybrid Cloud with Kestrel and SysFlow
Today, we are going to discuss how to combine SysFlow, Kestrel, and ELK (or simply Elastic) to enable threat hunting in a hybrid cloud environment. This post...
Posts by Tag
ELK
SysFlow ELK integration
As of release 0.3.0-rc2, sf-processor can write SysFlow telemetry records to Elastic!
update
SysFlow ELK integration
As of release 0.3.0-rc2, sf-processor can write SysFlow telemetry records to Elastic!
kestrel
Getting started with the Open Hunting Stack in Hybrid Cloud with Kestrel and SysFlow
Today, we are going to discuss how to combine SysFlow, Kestrel, and ELK (or simply Elastic) to enable threat hunting in a hybrid cloud environment. This post...
cloud
Getting started with the Open Hunting Stack in Hybrid Cloud with Kestrel and SysFlow
Today, we are going to discuss how to combine SysFlow, Kestrel, and ELK (or simply Elastic) to enable threat hunting in a hybrid cloud environment. This post...
MITRE
See the forest for the trees: glimpse the storyline of an attack using MITRE tags
With compute infrastructures being monitored quite closely these days, many events and alerts are created and collected at all times. While individual events...
data fusion
See the forest for the trees: glimpse the storyline of an attack using MITRE tags
With compute infrastructures being monitored quite closely these days, many events and alerts are created and collected at all times. While individual events...
release
SysFlow 0.4.0
Today we announce the release of SysFlow 0.4.0!
0.4.0
SysFlow 0.4.0
Today we announce the release of SysFlow 0.4.0!