Elastic Stack Security Fundamentals

Paths

Elastic Stack Security Fundamentals

Authors: Aaron Rosenmund, Saravanan Dhandapani, Lee Allen

This skill is intended to provide a foundational competence of the Elastic Stack. With this core knowledge in place, you will be able to leverage its capabilities and functions... Read more

Related topics

Security fundamentals Incident response Threat hunting Security analysis

What you will learn

  • How to ingest data into Elasticsearch
  • How to map data to field types
  • How to apply analyzers
  • How to perform search functions in Kibana with KQL and Apache Lucene
  • How to build visualizations in Kibana
  • How to perform index management tasks in Kibana
  • How to perform Kibana management tasks

Pre-requisites

It is strongly recommended that you have a basic understanding of database concepts and knowledge & competence of information and cyber security fundamentals.

Elastic Stack Security Fundamentals

In this section, you will learn how to efficiently collect, analyze, and display information to help identify, mitigate, or even prevent a malicious attack before it happens.

Elastic Stack: Getting Started

by Aaron Rosenmund

Feb 4, 2021 / 1h 41m

1h 41m

Start Course
Description

So you are considering using the Elastic Stack for security operations, to collect logs, or general observability? In this course, Elastic Stack: Getting Started, you’ll learn everything you need to begin down the Elastic Stack path. First, you’ll explore the Elasticsearch database and what power it brings to search. Next, you’ll discover how to setup and ingest data into your stack. Finally, you’ll learn how to analyze your data in the most effective format to return fast and relevant results. When you’re finished with this course, you’ll have the skills and knowledge of the Elastic Stack needed to administer the tools and begin searching for data in your own environment.

Table of contents
  1. Course Overview
  2. Detailing Elasticsearch Foundational Functions
  3. Ingesting Data into Elasticsearch
  4. Identifying Datatypes and Document Mappings in Elasticsearch
  5. Using Analyzers in Elasticsearch

Perform Basic Search Functions in Kibana with Kibana Query Language (KQL)

by Saravanan Dhandapani

Feb 10, 2021 / 1h 35m

1h 35m

Start Course
Description

Companies need to pay the same attention to availability, stability, and security in the microservices era as they do to business functionality. In this course, Perform Basic Search Functions in Kibana with Kibana Query Language, you’ll learn to write simple and efficient queries to search and filter your logs. First, you’ll explore the core Kibana components and understand the Discover application. Next, you’ll discover various query types that are supported by KQL. Then, you will learn how to use these queries to search, filter, and group the logs and narrow them down to the issue that we are trying to resolve. Finally, you’ll learn how to use Kibana tools to inspect, profile, debug, and optimize your queries. When you’re finished with this course, you’ll have the skills and knowledge of writing simple queries using KQL needed to analyze and troubleshoot your system and application logs.

Table of contents
  1. Course Overview
  2. Identifying Core Kibana Components
  3. Searching Logs Using KQL
  4. Filtering and Grouping Logs Using KQL
  5. Using KQL Advanced Features in Querying Log Data
  6. Writing Efficient Queries for Better Log Analysis

Perform Complex Search Functions in Kibana with Apache Lucene

by Lee Allen

Jan 27, 2021 / 1h 11m

1h 11m

Start Course
Description

If you are seeking to leverage the Lucene Query Syntax within Kibana to perform queries against your security data, then you have come to the right place. In this course, Perform Complex Search Functions in Kibana with Apache Lucene, you’ll learn to perform advanced searches in Kibana using the Lucene Query Syntax. First, you’ll explore the foundations of the Lucene Query Syntax. Next, you’ll discover additional search functions including proximity, wildcard, range, and non-existing field searches that help you dig into the details. Finally, you’ll learn how to leverage regular expressions, boosting, and fuzzy search functions to refine your search results further. When you’re finished with this course, you’ll have the skills and knowledge of the Apache Lucene Query Syntax needed to efficiently deep dive into your data using the Kibana Discover query bar and Lucene query syntax.

Table of contents
  1. Course Overview
  2. Discovering the Functions of Lucene Query Syntax
  3. Refine Search Results in Kibana with Lucene Query Syntax
  4. Using Regex, Boosting, and Fuzzy Searches in Kibana with Lucene
  5. Complex Searches in Kibana with Lucene Review

Coming Soon

Build Visualizations and Dashboards in Kibana

Coming Soon

by Lee Allen

Coming Soon

Perform Index Management Tasks in Kibana

Coming Soon

by Pluralsight

Coming Soon

Perform Kibana Management Tasks

Coming Soon

by Pluralsight

Offer Code *
Email * First name * Last name *
Company
Title
Phone
Country *

* Required field

Opt in for the latest promotions and events. You may unsubscribe at any time. Privacy Policy

By providing my phone number to Pluralsight and toggling this feature on, I agree and acknowledge that Pluralsight may use that number to contact me for marketing purposes, including using autodialed or pre-recorded calls and text messages. I understand that consent is not required as a condition of purchase from Pluralsight.

By activating this benefit, you agree to abide by Pluralsight's terms of use and privacy policy.

I agree, activate benefit