Mountain View, CA, USA
Jul 9, 2020   |  By Yamin Tian
This post continues this two-part blog series on further understanding the differences between macOS and Windows on the system level for effective endpoint security analysis. In Part 1, we covered process events. Here in Part 2, we’ll discuss file and network events. As with Part 1, my hope is to help cybersecurity professionals expand and enrich their experiences on a less familiar platform, ultimately helping them to be better prepared to face differences from past experiences.
Jul 9, 2020   |  By Diane Tetrault
We recently announced that Elastic Enterprise Search — our combined solution of search products — is now available to deploy as a single solution on Elastic Cloud. While Elastic App Search has been available on Elastic Cloud since early 2020, this is a new and exciting deployment option for Elastic Workplace Search.
Jul 8, 2020   |  By Woody Walton
Software development and delivery is an ever-changing landscape. Writing software was once an art form all its own, where you could write and deploy machine code with singleness of purpose and no concern for things like connecting to other computers. But as the world and the variety of systems that software supports became more complex, so did the ecosystem supporting software development.
Jul 8, 2020   |  By Camilla Montonen
In Part 1 of this blog series, we took a look at how we could use Elastic Stack machine learning to train a supervised classification model to detect malicious domains. In this second part, we will see how we can use the model we trained to enrich network data with classifications at ingest time. This will be useful for anyone who wants to detect potential DGA activity in their packetbeat data.
Jul 7, 2020   |  By Michael Hyatt
This post is the second in our Kubernetes observability tutorial series, where we explore how you can monitor all aspects of your applications running in Kubernetes, including: We’ll cover using Elastic Observability to ingest and analyze container metrics in Kibana using the Metrics app and out-of-the-box dashboards.
Mar 1, 2018   |  By Elastic
Learn how you can use Elastic Stack and X-Pack features, from role-based access control to data encryption, to get your Elasticsearch data ready for GDPR.
Jul 10, 2020   |  By Elastic
Introduction into Eland, a Python package to analyse, explore and manipulate Elasticsearch data. In this talk, Seth Larson introduces us to Eland. Eland is a Python Elasticsearch client for exploring and analyzing data residing in Elasticsearch with a familiar Pandas-compatible API.
Jul 2, 2020   |  By Elastic
Learn how to detect malicious events using both supervised and unsupervised machine learning techniques. See how to streamline the end-to-end experience of building and running machine learning jobs with the Elastic Stack.
Jul 2, 2020   |  By Elastic
The Logstash MaxMind filter enriches documents with GeoIP information from the open-source MaxMind database. But did you know that you can customize this filter to enrich documents with all kinds of other IP-related data? MaxMind uses its own database, which enables very fast searching based on IP address. Our experience is that this is the very best way to retrieve any type of IP-based information and store it upon ingestion without impacting performance.
Jun 30, 2020   |  By Elastic
Are you new to Elastic SIEM? Join us for a demo and learn how to start investigating threats in your environment.
Jun 25, 2020   |  By Elastic
Kibana is quite powerful and versatile for visualizing data in Elasticsearch. The Elastic Stack can be used for a variety of use cases. One is the detection of frauds e.g. in Banking transaction like within Softbank Payment Service or bonus point accounts like within Miles and More. Other areas are insurance or tax return data.