Building an open-source SIEM: combining ELK, Wazuh HIDS and Elastalert for optimal performance | by Security Shenanigans | InfoSec Write-ups - discu.eu

Reddit

Hi everybody! New blue team writeup on SIEM architecture - @securfreakazoid https://medium.com/@securityshenaningans/building-a-siem-combining-elk-wazuh-hids-and-elastalert-for-optimal-performance-f1706c2b73c6 6 comments 25/8/2020 netsec

Linking pages

GitHub - Spacial/awesome-csirt: Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities. https://github.com/Spacial/csirt 0 comments

Linked pages

Splunk | The Data Platform for the Hybrid World https://www.splunk.com 87 comments
Wazuh - Open Source XDR. Open Source SIEM. https://wazuh.com/ 84 comments
GitHub - Yelp/elastalert: Easy & Flexible Alerting With ElasticSearch https://github.com/Yelp/elastalert 26 comments
Medium https://medium.com/m/signin?isDraft=1&operation=login&redirect=https%3A%2F%2Fmedium.com%2F%40jamie_34747%2F79d382edf22b%3Fsource%3D 19 comments
GitHub - SigmaHQ/sigma: Main Rule Repository https://github.com/neo23x0/sigma 11 comments
MITRE ATT&CK® https://attack.mitre.org/ 0 comments

Related searches:

Search whole site: site:medium.com

Search title: Building an open-source SIEM: combining ELK, Wazuh HIDS and Elastalert for optimal performance | by Security Shenanigans | InfoSec Write-ups

See how to search.

Submit link to: