Elastic Stack

Elastic Stack

 

Elastic P724 logo.PNG

Elastic Stack

 

The Elastic Stack is a market leading real-time search and analytics platform for a wide range of use cases including security analytics. Logstash is the central data streaming engine in the stack, which features an ArcSight module that taps into the ArcSight Data Platform data stream via the EventBroker, processes the incoming CEF data on the fly, and includes various Kibana dashboards to begin exploring your security data immediately.  With this integration, ArcSight and Elastic can together provide a strong joint solution that combines the best of both worlds for analyzing security data.

 

Key Links

Partner Product
(link to SW Marketplace)

Security Product

Description

Partner Documentation

Logstash ArcSight Module

ArcSight

The Logstash ArcSight module enables you to easily integrate with and augment the ArcSight Data Platform (ADP) to explore and visualize data in real time with the Elastic Stack. With a single command, the ArcSight Module taps directly into the ADP data stream, parses and indexes the security events into Elasticsearch, and installs a suite of Kibana dashboards to get you exploring your data immediately. The ArcSight Module is available starting with the Logstash 5.6 release.

Elastic Documentation

 

DISCLAIMER:

Some content on Community Tips & Information pages is not officially supported by Micro Focus. Please refer to our Terms of Use for more detail.
Top Contributors
Version history
Revision #:
1 of 1
Last update:
‎2017-09-18 18:46
Updated by:
 
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.