Description:
Basics of Elastic. Starting from Discover. Looking at Rules and Cases, Visualizations and Dashboards.We start with the basics of Elastic Discover, using the KQL search and the fields to filter in and out parts of the documents.The visualizations made are added to a dashboard and saved for use later. Users and roles are made and amended as well as creating a new space with more limited access.We also talk about setting up rules, the rules shown are unfortunately not able to fire due to the setup that i am using, we are able to create a new one and modify a previously made one. Cybersecurity Analyst – SIEM
2024-04-14