What is Elastic Stack?
Elastic stack is the collection of different open source components linked together to help users take the data from any source and in any format and perform a search, analyze and visualize the data in real-time.
Purpose of Using Elastic Stack
Elastic Stack or Elastic, Logstash & Kibana are mainly used for:
- Data analytics.
- Security and threat detection.
- Performance monitoring.
What is Elastic Search
Elasticsearch is a full-text search and analytics engine used to store JSON-formated documents. Elasticsearch is an important component used to store, analyze, perform correlation on the data, etc.
It is built on top of Apache Lucene and provides a scalable solution for full-text search, structured querying, and data analysis. Elasticsearch supports RESTFul API to interact with the data.
Table of Contents:
Important Note
Definition
Purpose of ELK
Methodology
- I am a data analyst, how should I start?
- I am a security engineer, how should Istart?
-Components of elastic stack
- Elastic Search
- Purposes of Using Elastic Search
- Elastic Search Index
- Elastic Search Node
- Elastic Search Clusters
- Elastic Search Installation and
- configuration
- Elastic Search Configuration
- Verifying Installation
- Executing Search Queries in Elastic
- Search
Ingesting Logs
- With Elastic Agent
- With Log Stash
- Installing and ConfiguringLogstash
- With Beats
- Types of Beats
- Installation and Configuration
- Beats Vs Logstash: Which one to usefor log collection and ingestion?
- Example Ingesting Fortinet FirewallLogs
Kibana
- Installing and Configuring Kibana
- Kibana Components
- Discover Tab
- Fields
- Tables
- KQL (Kibana Query Language)
- Reserved Characters in KQL
- WildCards in KQL
- Searching The Logs with KQL
Data Visualization
Dashboards
Creating Canvas with Kibana
Creating Maps with Kibana
Creating Alerts in Kibana
Cyber Cases Studies
Who are these for?
This study book is for those who want to learn elastic stack, data analysts using elastic stack and cyber security analysts.
Page Count: 131
Format: PDF & Markup
Note: If you saw figures and images not showing up in the markup file, kindly check them in the PDF version.
Testimonials (LinkedIn)
How to buy the E-book?
You can buy the booklet directly by clicking on the button below
After you buy the booklet, you will be able to download the PDF booklet along with the markup files if you want to import them to Obsidian software.
What about the notes updates?
if you have been following my YouTube Channel, you definitely know that those who subscribe to the second tier of my channel membership they instantly get access to a vast catalog of cybersecurity, penetration testing, digital marketing, system administration and data analytics notes catalog for 10$ along with the ability to receive all notes updates as long as they are subscribed so what does that mean?
This means if you want to stay up to date with the changes and updates to the notes and get access to other categories, I encourage to join the channel membership second tier instead. However, if you are fine with downloading the current version of this section of the notes then you can buy this booklet instead for a one-time payment.
Will the prices of this booklet change in the future?
Once another version of this E-book is released, which it will, the price will slightly change as the booklet will include more contents, notes and illustrations.
Free Elastic Search Training
Checkout the playlist below on my YouTube channel for free open source intelligence training