Welcome to the blog of Kim Kruse Hansen and David Thejl-Clayton and Dennis Lund Christiansen, three incredibly distracted security professionals… Who are madly in love with Open Source!
You can find our github here…
See below for a list of our most recent posts.
- Creating detection rules in Elastic SIEM App
- We only need to append
- Using Logstash @metadata
- Simplifying Logstash by adding complexity
- Watching for no data
- TheHive enrichment
- Fault tolerant Elasticsearch
- Index Lifecycle Management – ILM
- Enriching ElasticSearch With Threat Data – Part 3 – Logstash
- Enriching ElasticSearch With Threat Data – Part 2 – Memcached and Python