Elastic security

Sigma Sysmon detection rules

content share admin by content share admin

A collection of rules based on the Sigma detection rules for Windows Sysmon events based on Winlogbeat data.

Download Now
Elastic security

Sigma Windows inbuilt detection rules

content share admin by content share admin

A collection of rules based on the Sigma rules for Windows (inbuilt folder) based on Winlogbeat data .

Download Now
Security detections overview

Detection engine alerts overview dashboard

Average rating:
content share admin by content share admin

Kibana Canvas dashboard that shows an aggregated view on the results of the detection engine in Elastic Security.

Download Now
Logstash Downloads

Logstash Meraki Pipeline

content share admin by content share admin

Logstash Pipeline to load Meraki logs via Syslog into Elasticsearch

Download Now
Elastic security

Sigma Windows Process Creation detection rules

content share admin by content share admin

A collection of rules based on the Sigma rules for Windows (process creation folder) based on Winlogbeat data .

Download Now
Elastic security

Sigma detection rules for proxy server logs

content share admin by content share admin

A collection of rules based on the Sigma detection rules for proxy server and web server looks, e.g. zeek or suricata.

Download Now

The search results are evaluated by ElasticPress using Elasticsearch clusters from Elastic Cloud.