Log Analysis with the ELK stack (Elasticsearch, Logstash, Kibana)

preview_player
Показать описание
It’s your first day at the new job and your new manager swings by your desk to tell you about your first assignment. You’re going to be in charge of log management and log analysis. Your job is to consolidate the log output to a central location from sources all around the company, such as, web servers, mail servers, firewalls, database servers, etc. But as a starting point you’re going to be consolidating, managing, and analyzing Syslog events. Suddenly, that job offer at cousin Rickey’s Ready Lube doesn’t look so bad.

Instead of reaching for a grease gun, you reach for the ELK stack (Elasticsearch, Logstash, Kibana) The ELK stack makes searching and analyzing data easier than ever before. Using ELK you can gain insights in real-time from the log data from around the company.

In this presentation, we’ll explore how you can consolidate the syslogs into a central store and delve into each of member of the ELK stack. Then we’ll put it them together to view and analyze log data. Finally, we’ll look at how the ELK can be used to do forensic analysis. Yes, there will be a demo.
  1. Jay Paul
  2. Linux
  3. Linuxfest Northwest 2015
  4. Gary Smith
  5. Security Officer
  6. super computer
Рекомендации по теме
Log Analysis with 1:17:40

Log Analysis with the ELK stack (Elasticsearch, Logstash, Kibana)

Servidae: Log Analysis 0:51:14

Servidae: Log Analysis in ELK - TryHackMe -

Servidae: Log Analysis 0:18:38

Servidae: Log Analysis in ELK TryHackMe

View Backend Logs 0:06:14

View Backend Logs using Kibana & Elasticsearch Tutorial

ELK Stack Tutorials 0:09:01

ELK Stack Tutorials - Log Analysis - Video 3

Incident Analysis with 0:07:20

Incident Analysis with ELK Kibana | HTTP Logs Analysis | TryHackMe ItsyBitsy

ELK stack Architecture 0:02:22

ELK stack Architecture for Cloud Log analysis with robust design

TryHackMe #807 Servidae: 0:23:25

TryHackMe #807 Servidae: Log Analysis in ELK

The ELK Stack: 0:07:35

The ELK Stack: Elasticsearch, Logstash and Kibana

Revolutionising Logs - 0:15:58

Revolutionising Logs - Analysis/Analytics using ELK Stack(Elastic Stack) - Elasticsearch

Visualize logs in 0:19:41

Visualize logs in Kibana - ELK stack

Microservices Logging | 0:20:44

Microservices Logging | ELK Stack | Elastic Search | Logstash | Kibana | JavaTechie

End-to-End Log Analytics 0:46:15

End-to-End Log Analytics in 5 Minutes

Monitoring HAProxy Logs 0:48:32

Monitoring HAProxy Logs Using the ELK Stack

Operational Logging & 0:08:46

Operational Logging & Security Analytics with Elasticsearch, Elastic Stack (ELK Stack)

Servidae ELK Log 0:30:56

Servidae ELK Log Analysis Walkthrough - TryHackMe - CyberSecMax

Tutorial 6 Log 1:31:38

Tutorial 6 Log and event analysis using ELK stack

ELK Stack log 0:14:22

ELK Stack log analysis

What is ELK 0:00:51

What is ELK (Elasticsearch, Logstash, Kibana) Stack #dataanalytics #observability #dataanalytics

Elasticsearch: Analyzing Log 0:04:02

Elasticsearch: Analyzing Log Data Using ELK

ELK Stack - 0:02:39

ELK Stack - Elasticsearch Logstash Kibana set up - Windows - Discover ,Visualize & analyze data

Webinar: Log Management 0:37:37

Webinar: Log Management at Scale with ELK

TryHackMe | Servidae: 0:07:11

TryHackMe | Servidae: Log Analysis in ELK | WriteUp

Steps to Configure 0:02:29

Steps to Configure Centralize Container Logs Using ELK Stack

Комментарии
Автор

Thanks for posting! I'm building an ELK and this has been one of the most useful over-views I've seen.

JMichaelThurman
Автор

[10:08] The list of alternatives to Splunk:
Graylog2
Nxlog
Octopussy
Logscape
ELSA
LOGanalyzer
Logwatcher
logHound
logReport
Logsurfer
PHP-Syslog-NG

WilsonMar
Автор

Thanks for this overview sir. I work with Splunk now and I agree, both tools seem very, very similar. I will test ELK out and compare myself .

Appreciated-

thelebbies
Автор

We are also seeing quite frequently SSH attacks from China (around 10 times a day)

Melpheoser