Logstash is usually used to prepare the data before ingest to Elasticsearch. But Logstash has a lot of different input, filter and output plugins that can be used for various different use cases.

One use case could be to use Logstash as a script execution engine. This can be triggered via Watcher or Kibana Alerts and Actions to e.g. auto heal systems by restarting a machine. To achieve that Logstash needs to be able to accept Web Hook requests and decide based on the query parameters which script to execute.

Using this download you can make Logstash a REST endpoint that executes scripts or manually adds data in Elasticsearch.

Tested versions	7.14
ECS compliant

You must log in to submit a review.

Logstash REST to exec scripts

Related downloads

osquery performance dashboard

Elastic Cloud Billing data collection and Kibana dashboard

Watch to move older Elasticsearch indices into freezed state

AWS VPCFlow Kibana dashboard

Logstash Meraki Pipeline

Sigma Sysmon detection rules

These downloads could be also interesting for you

Logstash Meraki Pipeline

PI Hole Logstash Pipeline and Dashboard

Logstash Pipeline for Talend ESB & MDM

Logstash REST to exec scripts

OpenSIEM Logstash Parsing

Keep up to date

Also have a look into this categories