DevOps Fest 2020. James Spiteri. Advanced Security Operations with Elastic Security
0 likes114 views
Elastic Security provides unified protection through prevention, detection, and response capabilities. It uses security content from Elastic and the community to analyze data in Elasticsearch and visualize threats in Kibana. The demo shows how Winlogbeat, Packetbeat, and Sysmon on Windows Server 2019 send enriched data to Elasticsearch in Elastic Cloud for analysis.
1 of 7
More Related Content
What's hot (20)
Ad
More from DevOps_Fest (20)
Ad
DevOps Fest 2020. James Spiteri. Advanced Security Operations with Elastic Security
- 1. Elastic Security - Unified Protection for Everyone DevOps Fest 2020 June 5th, 2020
- 2. James Spiteri Solutions Architect - EMEA Security Specialist
- 3. Prevention, Detection, and Response for unified Protection Elastic Security Security content from Elastic and community Visualize your Elasticsearch data and navigate the Elastic Stack A distributed, RESTful search and analytics engine Kibana Elasticsearch Security Out-of-the-box solution for security analysts everywhere LogstashBeats Endpoint
- 4. Today’s Demo
- 5. Winlogbeat Packetbeat Windows Server 2019 - GCP + Sysmon Module enriched with: Thank you to Olaf Hartong for the Sysmon Configuration! Elastic Cloud
- 7. Elastic is a Search Company. www.elastic.co Thank You