The list of "Other" is most useful one, because You can get information about the things You never new existed! :) I always keep "Other" so I can go deep.
You are the main man sir and I salute you. After struggling for a very long time to stream logs from fortinet to elk. I only watched your videos once and problem solved. I will follow your channel and learn more other cool stuff. Can you please also do a video on suricata integration for network monitoring via elastic-agent
Hi Ali, Great tutorial and very helpful. Q: Is it possible for logstash to parse logs from various sources at the same time ? ( Parse logs from Win, Linux, fortinet... ). How do we configure that? Any guidance will be appreciated.
Hello, I would appreciate your guidance on visualizing a situation where there have been multiple unauthorized login attempts using incorrect passwords. I have access to logs containing information about these attempts, and I'm interested in creating visualizations to better understand the patterns and potential security risks. Could you please provide me with advice on how to proceed with this task? Your assistance would be greatly valued. Thank you.
Hi, Great videos, unfortunately when i tried to make some of your views i`m missing some fields like event.action etc can you tell me why ? Great videos i learned a lot from this.
Hi Ali! I want to take the Elastic Certified Analyst Exam but the practice exams all seem to be from an earlier version. The latest is 8.3. Do you think I can still pass the exam? Do you offer instructor training? Cheers!
Good luck on the exam! It's not going to make a difference, the exam will cover the main concepts like searching data and building a dashboard with different visualizations and filters and such. The version difference will not affect the knowledge. You'll do great!
Hi Ali. Thank you for your channel and this nice work !! Have you ever tried to create a vega dashboard based on network traffic…It could be an awesome video 😉
Great tutorial! I didn't know about the Dark mode feature. Cool!
The list of "Other" is most useful one, because You can get information about the things You never new existed! :) I always keep "Other" so I can go deep.
That's a good idea!
You are the main man sir and I salute you. After struggling for a very long time to stream logs from fortinet to elk. I only watched your videos once and problem solved. I will follow your channel and learn more other cool stuff.
Can you please also do a video on suricata integration for network monitoring via elastic-agent
thank youuuu brother ❤
Perfect! Great.
Hi Ali, Great tutorial and very helpful. Q: Is it possible for logstash to parse logs from various sources at the same time ? ( Parse logs from Win, Linux, fortinet... ). How do we configure that? Any guidance will be appreciated.
Great tutorial. Thanks a lot!
Hello,
I would appreciate your guidance on visualizing a situation where there have been multiple unauthorized login attempts using incorrect passwords. I have access to logs containing information about these attempts, and I'm interested in creating visualizations to better understand the patterns and potential security risks. Could you please provide me with advice on how to proceed with this task? Your assistance would be greatly valued.
Thank you.
Hey man, I don't get data on some fields and I miss data in the dashboard. How do I resolve this?
I miss a lot of fields! How do I get these?
Hi, Great videos, unfortunately when i tried to make some of your views i`m missing some fields like event.action etc can you tell me why ?
Great videos i learned a lot from this.
what are you using for ingesting the FortiGate logs into Elasticsearch?
Hi Ali..Can you show tutorial how to sent error log only into Elasticsearch then visualize using Kibana?
I will make one soon!
HI Ali! Can you count Fortinet traffic ? Thank
Hi Ali! I want to take the Elastic Certified Analyst Exam but the practice exams all seem to be from an earlier version. The latest is 8.3. Do you think I can still pass the exam? Do you offer instructor training? Cheers!
Good luck on the exam! It's not going to make a difference, the exam will cover the main concepts like searching data and building a dashboard with different visualizations and filters and such. The version difference will not affect the knowledge. You'll do great!
Hi Ali. Thank you for your channel and this nice work !! Have you ever tried to create a vega dashboard based on network traffic…It could be an awesome video 😉
I'm glad you like the channel. Vega is on my list to learn, then will make tutorials about it!
Can you do how to integrate Azure Cloud services like O365 to elk
I would love to try that in the future, but I don't have any Azure services in my setup currently