$50

Parsing Logs via ELK

Event Information

Share this event

Date and Time

Location

Location

J. J. Pickle Research Campus, The University of Texas at Austin

North Burnet

Austin, TX 78758

View Map

Refund Policy

Refund Policy

No Refunds

Event description

Description

Trainer: Mark McLauchlin

ELK is an powerful open source search application. Often overlooked is the parsing functionality it can provide to enrich security event log data. This hands-on training will go over the ELK stack including installation and configuration of Filebeat, Logstash, Elasticsearch, and Kibana along with some best practices. A good portion of the time will be parsing log events with Logstash. Logstash is referred to as the Swiss army knife for log parsing and deservedly so. It has some very powerful capabilities when it comes to slicing and dicing events so they are more useful when it comes to searching for the needle in the stack of needles. Additionally, Logstash supports 50+ outputs. Even though Logstash is typically associated with Elasticsearch, it can send parsed event data to many other technologies such as DataDog, Graylog, Kafka, S3, etc. No prior knowledge of ELK is expected or required.

Read more at: https://bsidesaustin.com/bsides-austin-2019-training-days/

Share with friends

Date and Time

Location

J. J. Pickle Research Campus, The University of Texas at Austin

North Burnet

Austin, TX 78758

View Map

Refund Policy

No Refunds

Save This Event

Event Saved