Elastic Stack Fundamentals

Paths

Elastic Stack Fundamentals

Authors: Aaron Rosenmund, Saravanan Dhandapani, Lee Allen, Josh Stroschein

This skill is intended to provide a foundational competence of the Elastic Stack. With this core knowledge in place, you will be able to leverage its capabilities and functions... Read more

Related topics

Security fundamentals Incident response Threat hunting Security analysis

What you will learn

  • How to install and configure Elastic
  • How to ingest data into Elasticsearch
  • How to map data to field types
  • How to apply analyzers
  • How to perform search functions in Kibana with KQL and Apache Lucene
  • How to build visualizations in Kibana
  • How to perform index management tasks in Kibana
  • How to perform Kibana management tasks

Pre-requisites

It is strongly recommended that you have a basic understanding of database concepts and knowledge & competence of information and cyber security fundamentals.

Elastic Stack Security Fundamentals

In this section, you will learn how to efficiently collect, analyze, and display information to help identify, mitigate, or even prevent a malicious attack before it happens.

Elastic Stack: Getting Started

by Aaron Rosenmund

Feb 4, 2021 / 1h 41m

1h 41m

Start Course
Description

So you are considering using the Elastic Stack for security operations, to collect logs, or general observability? In this course, Elastic Stack: Getting Started, you’ll learn everything you need to begin down the Elastic Stack path. First, you’ll explore the Elasticsearch database and what power it brings to search. Next, you’ll discover how to setup and ingest data into your stack. Finally, you’ll learn how to analyze your data in the most effective format to return fast and relevant results. When you’re finished with this course, you’ll have the skills and knowledge of the Elastic Stack needed to administer the tools and begin searching for data in your own environment.

Table of contents
  1. Course Overview
  2. Detailing Elasticsearch Foundational Functions
  3. Ingesting Data into Elasticsearch
  4. Identifying Datatypes and Document Mappings in Elasticsearch
  5. Using Analyzers in Elasticsearch

Perform Basic Search Functions in Kibana with Kibana Query Language (KQL)

by Saravanan Dhandapani

Feb 10, 2021 / 1h 35m

1h 35m

Start Course
Description

Companies need to pay the same attention to availability, stability, and security in the microservices era as they do to business functionality. In this course, Perform Basic Search Functions in Kibana with Kibana Query Language, you’ll learn to write simple and efficient queries to search and filter your logs. First, you’ll explore the core Kibana components and understand the Discover application. Next, you’ll discover various query types that are supported by KQL. Then, you will learn how to use these queries to search, filter, and group the logs and narrow them down to the issue that we are trying to resolve. Finally, you’ll learn how to use Kibana tools to inspect, profile, debug, and optimize your queries. When you’re finished with this course, you’ll have the skills and knowledge of writing simple queries using KQL needed to analyze and troubleshoot your system and application logs.

Table of contents
  1. Course Overview
  2. Identifying Core Kibana Components
  3. Searching Logs Using KQL
  4. Filtering and Grouping Logs Using KQL
  5. Using KQL Advanced Features in Querying Log Data
  6. Writing Efficient Queries for Better Log Analysis

Perform Complex Search Functions in Kibana with Apache Lucene

by Lee Allen

Jan 27, 2021 / 1h 10m

1h 10m

Start Course
Description

If you are seeking to leverage the Lucene Query Syntax within Kibana to perform queries against your security data, then you have come to the right place. In this course, Perform Complex Search Functions in Kibana with Apache Lucene, you’ll learn to perform advanced searches in Kibana using the Lucene Query Syntax. First, you’ll explore the foundations of the Lucene Query Syntax. Next, you’ll discover additional search functions including proximity, wildcard, range, and non-existing field searches that help you dig into the details. Finally, you’ll learn how to leverage regular expressions, boosting, and fuzzy search functions to refine your search results further. When you’re finished with this course, you’ll have the skills and knowledge of the Apache Lucene Query Syntax needed to efficiently deep dive into your data using the Kibana Discover query bar and Lucene query syntax.

Table of contents
  1. Course Overview
  2. Discovering the Functions of Lucene Query Syntax
  3. Refine Search Results in Kibana with Lucene Query Syntax
  4. Using Regex, Boosting, and Fuzzy Searches in Kibana with Lucene
  5. Complex Searches in Kibana with Lucene Review

Perform Index Management Tasks in Kibana

by Saravanan Dhandapani

May 4, 2021 / 1h 52m

1h 52m

Start Course
Description

As more data gets ingested to your indices, your queries performance might suffer if they are not maintained properly. In this course, Perform Index Management Tasks in KIbana, you’ll learn to design and architect your indices for optimal performance . First, you’ll explore how to achieve scalability and reliability by understanding nodes, clusters, shards, and replicas. Next, you’ll discover index settings, mappings and aliases in designing your index templates. Then you will learn how to manage the indices by understanding various lifecycle operations. Finally, you’ll learn how to perform a snapshot and restore indices. When you’re finished with this course, you’ll have the skills and knowledge of optimally designing and managing Elasticsearch indices needed to achieve fast performing queries.

Table of contents
  1. Course Overview
  2. Achieving High Performance with Elasticsearch Indices
  3. Optimizing Elastisearch Indices
  4. Managing Index Lifecycle
  5. Performing Data Backtup and Restore

Perform Kibana Management Tasks

by Saravanan Dhandapani

Jun 11, 2021 / 1h 25m

1h 25m

Start Course
Description

As corporations grow in size, it's essential to effectively analyze the data and reuse the queries, charts, and graphs across the organization. In this course, Perform KIbana Management Tasks, you’ll learn to manage Kibana and derive meaningful information from your data. First, you’ll explore creating index patterns to query the data effectively. Next, you’ll discover to format the charts and graphs according to the requirement. Then you will learn how to create independent spaces and segregate business users. Finally, you’ll learn how to import and export Kibana objects and address the errors you may face during the process. When you’re finished with this course, you’ll have the skills and knowledge of managing Kibana needed to gain maximum insights into your data.

Table of contents
  1. Course Overview
  2. Configuring an Index Pattern in Kibana
  3. Visualizing Data in Kibana
  4. Customizing Kibana Using Kibana Spaces
  5. Saving and Reusing Kibana Objects

Build Visualizations and Dashboards in Kibana

by Saravanan Dhandapani

Jul 12, 2021 / 1h 43m

1h 43m

Start Course
Description

As corporations grow in size, it’s paramount to leverage the power of data to make educated business decisions. In this course, Build Visualizations and Dashboards in Kibana, you’ll learn to harness the power of data and derive meaningful insights. First, you’ll explore how datais aggregated in Elasticsearch. Next, you’ll discover how to perform simple visualizations using line, area, and bar charts. Then, you will learn how to build complex visualizations using heatmaps, timelion, and TSVB. Finally, you will learn how to build dashboards using the charts and create drilldowns between them. When you’re finished with this course, you’ll have the skills and knowledge of creating dynamic visualizations needed to derive information from the data effectively.

Table of contents
  1. Course Overview
  2. Aggregating Data in Kibana
  3. Performing Simple Visualizations in Kibana
  4. Performing Complex Visualizations in Kibana
  5. Creating Dashboards in Kibana

Installing the Elastic Stack

by Josh Stroschein

Aug 17, 2021 / 1h 30m

1h 30m

Start Course
Description

Creating a centralized solution for enterprise-wide monitoring, logging and alerting can be a daunting task. In this course, Installing the Elastic Stack, you'll learn how to leverage tools like Elasticsearch, Kibana, and Beats to do create a robust logging and monitoring solution. First, you'll look at installing all of the necessary components such as Elasticsearch, Kibana and Logstash. Then, once storage and visualization capabilities are in place, you'll deploy beats to gather and normalize log data from servers and applications. Finally, you'll learn how to use Kibana to visualize data and explore next steps for getting your Elastic Stack production ready! When you've completed this course, you'll have the skills to setup a completely open-source alerting, monitoring, and logging solution from scratch.

Table of contents
  1. Course Overview
  2. Installing Elastic
  3. Installing Logstash
  4. Creating Visualizations with Kibana
  5. Collecting Logs from Windows Servers with Winlogbeat
  6. Collecting Logs from Linux Servers with Filebeat
  7. Collecting Network Traffic with Packetbeat
  8. Getting Elastic Stack Production Ready
Offer Code *
Email * First name * Last name *
Company
Title
Phone
Country *

* Required field

Opt in for the latest promotions and events. You may unsubscribe at any time. Privacy Policy

By providing my phone number to Pluralsight and toggling this feature on, I agree and acknowledge that Pluralsight may use that number to contact me for marketing purposes, including using autodialed or pre-recorded calls and text messages. I understand that consent is not required as a condition of purchase from Pluralsight.

By activating this benefit, you agree to abide by Pluralsight's terms of use and privacy policy.

I agree, activate benefit
Learning Paths

Elastic Stack Fundamentals

  • Number of Courses7 courses
  • Duration11 hours
  • Skill IQ available Skill IQ

This skill is intended to provide a foundational competence of the Elastic Stack. With this core knowledge in place, you will be able to leverage its capabilities and functions for security analysis, incident response, and threat hunting.

Courses in this path

Elastic Stack Security Fundamentals

In this section, you will learn how to efficiently collect, analyze, and display information to help identify, mitigate, or even prevent a malicious attack before it happens.

Elastic Stack: Getting Started

  • by Aaron Rosenmund
  • 1h 41m Duration
  •  (39)

Perform Basic Search Functions in Kibana with Kibana Query Language (KQL)

  • by Saravanan Dhandapani
  • 1h 35m Duration
  •  (22)

Perform Complex Search Functions in Kibana with Apache Lucene

  • by Lee Allen
  • 1h 10m Duration

Perform Index Management Tasks in Kibana

  • by Saravanan Dhandapani
  • 1h 52m Duration

Perform Kibana Management Tasks

  • by Saravanan Dhandapani
  • 1h 25m Duration

Build Visualizations and Dashboards in Kibana

  • by Saravanan Dhandapani
  • 1h 43m Duration

Installing the Elastic Stack

  • by Josh Stroschein
  • 1h 30m Duration

Learn with the best

Aaron Rosenmund
Aaron Rosenmund
Aaron M. Rosenmund is a cyber security operations subject matter expert, with a background in federal and business defensive and offensive cyber operations and system automation.
Saravanan Dhandapani
Saravanan Dhandapani
I have been passionate about designing and developing software that is scalable, portable and maintainable.
Lee Allen
Lee Allen
Lee Allen is a penetration tester by trade. Lee has authored four books about penetration testing and has created several Pluralsight courses.
Josh Stroschein
Josh Stroschein
Dr. Josh Stroschein is an Assistant Professor at Dakota State University where he teaches malware analysis, software exploitation, reverse engineering, and penetration testing. Josh also works as a malware analyst for Bromium, an end-point security company and is the Director of Training for the Open Information Security Foundation (OISF).

Join our learners and upskill
in leading technologies