Monitoring

In this blog post, you will learn how to write specific events to specific index using Logstash. Logstash is a free and open server-side data processing pipeline that ingests data from a multitude of sources, transforms it, and then sends it to your favorite "stash", which in this example setup is an Elasticsearch. Logstash can be configured to write specific...

Follow through this tutorial to learn how to enable and configure Cortex Analyzers. Cortex is an opensource software created by TheHive that can be used by IT security personnel to manually or automatically (through Cortex REST APIs) analyze event/incident observables and IOCs such as IP addresses, file, hashes, domain names, URLs, email addresses e.t.c. Analyzers allow analysts and security...

In this tutorial, you will learn how to install latest Grafana on Debian 10. Grafana is an open source analytics and monitoring solution that enables you to query, visualize and alert on various systems metrics that can be pulled from various time series databases such as Graphite, InfluxDB & Prometheus etc. Install latest Grafana on Debian 10 There are various methods in...

In this tutorial, you will learn how to detect changes to critical files in Linux using Auditbeat and ELK. Auditbeat is one of the elastic beats that according to Elastic page, collects Linux audit framework data and monitor the integrity of the files. It ships these events in real time to the rest of the Elastic Stack for further...

In this guide, we are going to learn how to install and configure SNMP on Ubuntu 20.04. SNMP is an acronym for Simple Network Management Protocol. It provides an agentless method of managing and monitoring of network devices and servers for health information, system metrics such as CPU load, Physical Memory usage, number of running processes, service state e.t.c...

Learn how to install Zabbix Agent on FreeBSD 12 for Zabbix monitoring. Install and configure Zabbix server on Debian 10 Buster. Install Zabbix 4.x from Sources on Debian 10 Buster Install Zabbix Server from APT on Debian 10 Buster Install Zabbix Agent on FreeBSD 12 In order to monitor Linux hosts with Zabbix, you need to install Zabbix agents on them. In this guide,...

In this tutorial, you will learn how to install Cortex on Ubuntu 22.04/Ubuntu 20.04. Cortex is a powerful observable analysis and active response engine that can be used by SOC analysts or any IT security personnel to analyze collected event/incident observables at scale by by querying a single tool instead of multiple tools, actively respond to threats and interact with...