Friday, November 26, 2021

Quick Way to Enable Kibana HTTPS Connection

0
Enable Kibana HTTPS Connection
In this tutorial, you will learn how to enable Kibana HTTPS connection. HTTPS connections ensures that data is encrypted in transit. Kibana supports only TLS encryption protocol. With TLS, X.509 certificates are used to encrypt the data-in-transit. This kind of encryption is asymetric because each certificate contains a public key and a private key which are used for cryptographic operations....

Integrate Wazuh Manager with ELK Stack

0
In this tutorial, you will learn how to integrate Wazuh manager with ELK stack as a unified Security Information and Event management tool. Wazuh consists of an endpoint security agent, deployed to the monitored systems, and a management server, which collects and analyzes data gathered by the agents. Wazuh can be fully integrated with the Elastic Stack, which provides a search...

Easy Way to Install Wazuh Agents on Ubuntu/Debian

0
Install Wazuh Agents on Ubuntu/Debian
In this tutorial, you will learn how to install Wazuh agents on Ubuntu/Debian systems. Wazuh operates in server-client architecture. It is made up of a Wazuh server and Wazuh agents. Wazuh agents collect data from the end-points and ships it to the Wazuh manager for processing. It is capable of; Log and data collectionFile integrity monitoringRootkit and malware detectionSecurity policy...

Enable HTTPS Connection Between Elasticsearch Nodes

0
Enable HTTPS Connection Between Elasticsearch Nodes
In this tutorial, you will learn how to enable HTTPS connection between Elasticsearch nodes. One of the Elastic security features is to enable encryption between Elasticsearch cluster nodes using HTTPS connection. If you want to learn how to configure and setup Elasticsearch cluster, check out our previous guide by following the link below; Configure Multi-node Elasticsearch Cluster See also; Enable Kibana HTTPS Connection Enable...

Install and setup Velociraptor on Ubuntu 20.04

0
Welcome to our tutorial on how to install and setup Velociraptor on Ubuntu 20.04. Velociraptor is an endpoint monitoring open source tool that allows collection of host based state information of various end points using Velocidex Query Language (VQL) queries for monitoring. It is based on GRR, OSQuery and Google's Rekall tool. Install and Setup Velociraptor on Ubuntu 20.04 In this...

Restore Elasticsearch Snapshot to another Cluster

0
Backup and Restore Elasticsearch Index Data
In this tutorial, we will try to show how to restore Elasticsearch snapshot to another Cluster. Elasticsearch data can be backed up by taking a snapshot of the running Elasticsearch cluster. In our previous tutorial, we learnt how to backup and restore a single node Elasticsearch cluster. Link is provided below; Backup and Restore Elasticsearch Index Data Similarly, in this tutorial, we...

Backup and Restore Elasticsearch Index Data

0
Backup and Restore Elasticsearch Index Data
In this blog post, you will learn how to backup and restore Elasticsearch Index data. Well, there are various reasons for taking data backups. One of the main reason being to protect the primary data against any unforeseen damage as a result of system hardware/software failure. In case for Elasticsearch, you might be wanting to migrate the data to...

Install Nagios Core on FreeBSD 13

0
Install Nagios Core on FreeBSD 13
In this guide, we are going to learn how to install Nagios Core on FreeBSD 13. Nagios is an opensource tool that provides an enterprise-class central monitoring engine for IT monitoring, network monitoring, server and applications monitoring. It also provides a web interface for viewing current status, historical logs, and basic reports. Install Nagios Core on FreeBSD 13 Nagios Core 4.4.6 is the...

Install Filebeat on FreeBSD

0
Install Filebeat on FreeBSD
Follow through this guide to learn how to install Filebeat on FreeBSD. Install Filebeat on FreeBSD Filebeat is not available on the default FreeBSD repositories but can be installed from FreeBSD ports. We use FreeBSD 13.0 in this setup; freebsd-version 13.0-RELEASE Install Ports Collection on FreeBSD To use ports to install software in FreeBSD, you need to install portsnap. Portsnap is a fast and user-friendly tool...

Configure Prometheus Email Alerting with AlertManager

3
Install Prometheus on Debian 10
In this tutorial, you will learn how to configure Prometheus Email alerting with AlertManager. AlertManager is used to handle alerts sent by client applications such as the Prometheus server. It takes care of deduplicating, grouping, and routing them to the correct receiver integration such as email, PagerDuty, or OpsGenie. It also takes care of silencing and inhibition of alerts. There...