Learn how to interact directly with Elasticsearch using Python as well as found out some use cases for doing so. This video explores using Python against Elasticsearch based on a project to implement custom lifecycle management strategies for index deletion, rollovers, allocation, and cloud accounting. H & A Security Solutions is sharing some of our experiences, both good and bad, with Elasticsearch and how Python can lift barriers you come up against.
Link to Elastic ILM project used during the video can be found here:
github.com/HAS...
2:59 Official Elasticsearch Python documentation (elasticsearch-...)
3:20 Roberto Rodriguez Jupyter Notebooks from SIGMA Rules to Query Elasticsearch ( / jupyter-notebooks-from... )
Do not forget to subscribe to this channel for updates on future videos. Also, H & A Security Solutions provides aid to clients on a daily basis to use, implement, and maintain Elastic stacks as a SIEM.
Looking for help improving your detection capabilities? Reach out to info@hasecuritysolutions.com or (217) 730-3007. We routinely implement SIEM and NSM solutions both commercial and open source.
Speaker: Justin Henderson, CEO H & A Security Solutions LLC
Justin is the co-founder of H&A Security Solutions, LLC, a company that deploys, maintains, and tunes SIEM, NSM, and other solutions for organizations. Justin also maintains one of the largest security onion deployments in the world with over 1200 network sensors. He is a passionate security architect and researcher whose experience in cybersecurity started at the age of thirteen when he began providing professional services to organizations. Justin was the 13th GSE to become both a red and blue SANS Cyber Guardian and holds over 60 industry certifications. As the author of SEC555 and co-author of SEC455 and SEC530, he’s able to bring his encyclopedia of IT knowledge into the classroom.
Follow Justin on Twitter @SecurityMapper at / securitymapper or using LinkedIn at / justinhenderson2014 .
26 авг 2024
