In this tutorial, I will show you how to install and configure Elastic Stack on a CentOS 7 server for monitoring server logs. Then Ill show you how t...

This tutorial shows you how to index NMAP Port Scan results into Elasticsearch. Network Mapper is a free and open source (license) utility for network discovery and security auditing.

In this tutorial, we will go over the installation of the Elasticsearch ELK Stack on CentOS 7—that is, Elasticsearch 2.1.x, Logstash 2.1.x, and Kibana 4.3.x…

Syslog inspection Installing ELK stack on a Raspberry Pi 3 Analysis of the logs with Kibana Looking at threat reports Conclusion 1. Syslog inspection Internet is full of bad guys that are constantly scanning all IP addresses looking for unpatched services…

Что мы получим после этой статьи: Систему сбора и анализа логов на syslog-ng, elasticsearch в качестве хранилища данных, kibana и grafana в качестве систем визуализации данных, kibana для удобного...

Having the ability to deploy Elasticsearch, Logstash and Kibana (ELK) from a single command is a wonderous thing. Together, in this post, we shall build the Ansible playbook to do just that.

Prehistory: One of our customers was significantly impressed when he discovered AlienVault and calmed down just a little bit later after he…

A Local File Inclusion in Kibana allows attackers to run local JavaScript files Introduction As organizations flock to Elastic’s open source Elasticsearch.

NOTICE (2017–03–31; 2019–04–29): Even though the overall topic of this story is still relevant some of the specifics are outdated — for…

A Quick 15-minutes walkthrough with a Squid Proxy and Docker