logstash Archives

Monitoring Large Scale Environments

David Michael Berry | October 20, 2019 | bash, David Michael Berry, elasticsearch, grok, logstash, net-snmp, scripting, SNMP, Timelion

Requirement: A relatively “large scale” environment (500-1000 servers) needs to be monitored, with specific KPIs tracked and trended at regular intervals. This needs to be done without adding extra packages to the ...

Berry Networks

Toolsmith #126: Adversary hunting with SOF-ELK

Russ McRee | July 7, 2017 | DFIR, ELK, forensics, hunt, kibana, Log Analysis, logging, logstash, Malware Analysis, NFAT, sheepdog, SOF-ELK

As we celebrate Independence Day, I'm reminded that we honor what was, of course, an armed conflict. Today's realities, when we think about conflict, are quite different than the days of lining ...

HolisticInfoSec™