Logstash is usually used to prepare the data before ingest to Elasticsearch. But Logstash has a lot of different input, filter and output plugins that can be used for various different use cases.

One use case could be to use Logstash as a script execution engine. This can be triggered via Watcher or Kibana Alerts and Actions to e.g. auto heal systems by restarting a machine. To achieve that Logstash needs to be able to accept Web Hook requests and decide based on the query parameters which script to execute.

Using this download you can make Logstash a REST endpoint that executes scripts or manually adds data in Elasticsearch.

Tested versions	7.14
ECS compliant

You must log in to submit a review.

Logstash REST to exec scripts

Related downloads

ACSC Advisory IOCs detection rules

Playable Pacman

Uptime watch using Heartbeat data

Sankey visualization example

PI Hole Logstash Pipeline and Dashboard

CMDB dependency in Kibana Dashboard

These downloads could be also interesting for you

PI Hole Logstash Pipeline and Dashboard

Logstash REST to exec scripts

OpenSIEM Logstash Parsing

Logstash Meraki Pipeline

Logstash Pipeline for Talend ESB & MDM

Keep up to date

Also have a look into this categories