Paths
Elastic Stack Fundamentals
This skill is intended to provide a foundational competence of the Elastic Stack. With this core knowledge in place, you will be able to leverage its capabilities and functions... Read more
What you will learn
- How to install and configure Elastic
- How to ingest data into Elasticsearch
- How to map data to field types
- How to apply analyzers
- How to perform search functions in Kibana with KQL and Apache Lucene
- How to build visualizations in Kibana
- How to perform index management tasks in Kibana
- How to perform Kibana management tasks
Pre-requisites
It is strongly recommended that you have a basic understanding of database concepts and knowledge & competence of information and cyber security fundamentals.
Elastic Stack Security Fundamentals
In this section, you will learn how to efficiently collect, analyze, and display information to help identify, mitigate, or even prevent a malicious attack before it happens.
Elastic Stack: Getting Started
1h 41m
Description
So you are considering using the Elastic Stack for security operations, to collect logs, or general observability? In this course, Elastic Stack: Getting Started, you’ll learn everything you need to begin down the Elastic Stack path. First, you’ll explore the Elasticsearch database and what power it brings to search. Next, you’ll discover how to setup and ingest data into your stack. Finally, you’ll learn how to analyze your data in the most effective format to return fast and relevant results. When you’re finished with this course, you’ll have the skills and knowledge of the Elastic Stack needed to administer the tools and begin searching for data in your own environment.
Table of contents
- Course Overview
- Detailing Elasticsearch Foundational Functions
- Ingesting Data into Elasticsearch
- Identifying Datatypes and Document Mappings in Elasticsearch
- Using Analyzers in Elasticsearch
Perform Basic Search Functions in Kibana with Kibana Query Language (KQL)
1h 35m
Description
Companies need to pay the same attention to availability, stability, and security in the microservices era as they do to business functionality. In this course, Perform Basic Search Functions in Kibana with Kibana Query Language, you’ll learn to write simple and efficient queries to search and filter your logs. First, you’ll explore the core Kibana components and understand the Discover application. Next, you’ll discover various query types that are supported by KQL. Then, you will learn how to use these queries to search, filter, and group the logs and narrow them down to the issue that we are trying to resolve. Finally, you’ll learn how to use Kibana tools to inspect, profile, debug, and optimize your queries. When you’re finished with this course, you’ll have the skills and knowledge of writing simple queries using KQL needed to analyze and troubleshoot your system and application logs.
Table of contents
- Course Overview
- Identifying Core Kibana Components
- Searching Logs Using KQL
- Filtering and Grouping Logs Using KQL
- Using KQL Advanced Features in Querying Log Data
- Writing Efficient Queries for Better Log Analysis
Perform Complex Search Functions in Kibana with Apache Lucene
1h 11m
Description
If you are seeking to leverage the Lucene Query Syntax within Kibana to perform queries against your security data, then you have come to the right place. In this course, Perform Complex Search Functions in Kibana with Apache Lucene, you’ll learn to perform advanced searches in Kibana using the Lucene Query Syntax. First, you’ll explore the foundations of the Lucene Query Syntax. Next, you’ll discover additional search functions including proximity, wildcard, range, and non-existing field searches that help you dig into the details. Finally, you’ll learn how to leverage regular expressions, boosting, and fuzzy search functions to refine your search results further. When you’re finished with this course, you’ll have the skills and knowledge of the Apache Lucene Query Syntax needed to efficiently deep dive into your data using the Kibana Discover query bar and Lucene query syntax.
Table of contents
- Course Overview
- Discovering the Functions of Lucene Query Syntax
- Refine Search Results in Kibana with Lucene Query Syntax
- Using Regex, Boosting, and Fuzzy Searches in Kibana with Lucene
- Complex Searches in Kibana with Lucene Review
Coming Soon
Perform Kibana Management Tasks
Coming Soon
Perform Index Management Tasks in Kibana
1h 52m
Description
As more data gets ingested to your indices, your queries performance might suffer if they are not maintained properly. In this course, Perform Index Management Tasks in KIbana, you’ll learn to design and architect your indices for optimal performance . First, you’ll explore how to achieve scalability and reliability by understanding nodes, clusters, shards, and replicas. Next, you’ll discover index settings, mappings and aliases in designing your index templates. Then you will learn how to manage the indices by understanding various lifecycle operations. Finally, you’ll learn how to perform a snapshot and restore indices. When you’re finished with this course, you’ll have the skills and knowledge of optimally designing and managing Elasticsearch indices needed to achieve fast performing queries.
Table of contents
- Course Overview
- Achieving High Performance with Elasticsearch Indices
- Optimizing Elastisearch Indices
- Managing Index Lifecycle
- Performing Data Backtup and Restore