Channels
android_tests
apple-silicon
arm-architecture
auditing-warroom
aws
carving
code-review
community-feeds
core
darkbytes
doorman
ebpf
eclecticiq-polylogyx-extension
extensions
file-carving
fim
fleet
fleet-dev
fleetosquery
foundation
fuzzing
general
golang
goquery
infrastructure
jobs
kolide
linen-dev
linux
macos
officehours
osctrl
plugins
process-auditing
querycon
queryhub
random
selfgroup
sql
tls
uptycs
vendor-feeds
website
windows
zeek
zentral
zercurity
Title
b
bhuvaneswari
12/29/2020, 10:53 AMcan anybody please help me how to integrate osquery with ELK stack. It's urgent.
a
alessandrogario
12/29/2020, 10:58 AMThere is an example here, using fleetdm: https://github.com/fleetdm/osquery-in-a-box
d
defensivedepth
12/29/2020, 11:04 AM@bhuvaneswari did you see my reply from your same question last week?
https://osquery.slack.com/archives/C08V7KTJB/p1608743553372200?thread_ts=1608730631.371600&cid=C08V7KTJB
💯 1
😮squery: 2
b
bhuvaneswari
12/29/2020, 2:03 PMHI,
I want integrate the ELK stack with Osquery.. For that i have followed the Osquery documentation(https://osquery.readthedocs.io/en/stable/deployment/log-aggregation/#logstash). Even after completing the configuration i didn't get the fields in kibana. Please let me know how to get and confirm Whether this logstash integration will support in Windows Platform. Since i am using the Windows platform?
t
theopolis
12/29/2020, 3:58 PM@bhuvaneswari I also see you have opened two GitHub issues related to this question. Please be patient and please do not ask the same questions in multiple places until you have given folks enough time to ask clarifying questions and understand more about your situtation.
People are trying to help you but you are not acknowledging their questions or help. This makes it very challenging to resolve your problem.
d
defensivedepth
12/29/2020, 4:22 PM@bhuvaneswari I would also ask that you not DM people the same question over and over - this is not an acceptable way to ask for assistance.