#Logstash
Utan externa statistiktjänster som kräver cookies (trainfo.eu är nog i en väldigt liten minoritet som inte har cookies) kan man räkna besökare från webserverloggarna (anonymiserade). Flest besökare på förmiddagen och kvällen.
Inga större överraskningar, flest kollar från mobilen.
Men bra att veta vilka sidor som är populärast så jag vet vad som är viktigast.
This project is a SIEM with SIRP and Threat Intel, all in one.
Which #logging system do you prefer for managing logs in #Kubernetes?
Enhancing Events with Geolocation Data in Logstash – Source: socprime.com https://ciso2ciso.com/enhancing-events-with-geolocation-data-in-logstash-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #Elasticsearch #KnowledgeBits #socprimecom #Logstash #socprime #Blog
Using Ruby Code in Logstash for Translating Text from HEX – Source: socprime.com https://ciso2ciso.com/using-ruby-code-in-logstash-for-translating-text-from-hex-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #Latestthreats #socprimecom #ELKStack #Logstash #socprime #Blog
continuing the shell tools: tuistash for #logstash looks great — https://github.com/edmocosta/tuistash
data is retrieved from the logstash API (local or remote) or offline from a diagnostic bundle (https://github.com/elastic/support-diagnostics). no support for aggregating data from multiple logstashs for now
PS: this one is a side project of one of our colleagues
Standard Logstash Template for Event Processing (Gold Template) – Source: socprime.com https://ciso2ciso.com/standard-logstash-template-for-event-processing-gold-template-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #KnowledgeBits #socprimecom #ELKStack #Logstash #socprime #Blog
Adding Processing Timestamp and Hostname in Logstash Using Ruby – Source: socprime.com https://ciso2ciso.com/adding-processing-timestamp-and-hostname-in-logstash-using-ruby-source-socprime-com/ #rssfeedpostgeneratorecho #CyberSecurityNews #KnowledgeBits #socprimecom #ELKStack #Logstash #socprime #Blog
open source is coming in 2 broad flavors:
* permissive "do what you want" with the apache license 2.0 as a popular choice: this is what #logstash (dual-licensed) and #elasticsearch language clients have always been using
* copyleft "do what you want but share changes alike" 2/10
Downtime of a company's main database is very expensive and a major risk to operations. In this success story, I show how I helped a device manufacturer gain real-time insights into their data warehouse using #Elasticsearch, #Logstash and #kibana
https://www.fabianstadler.com/2024/09/mysql_database_elk.html
Logstash power users, check this out! 
**tuistash**: A terminal UI for monitoring Logstash.
Inspect pipelines, flows, and nodes with ease!
Written in Rust & built with @ratatui_rs
GitHub: 
The #s390x open source team at IBM confirms the latest versions of various software packages run well on #Linux on #IBMZ & #LinuxONE
In July of 2024 validation was maintained for over 30 projects, including: #Logstash, the #R programming language & #zabbix
In the community, the bootc and Kueue projects both added s390x support to their respective CI systems 
structured logging in @springboot, supporting #elastic common schema (ECS) and #logstash *nice*
https://spring.io/blog/2024/08/23/structured-logging-in-spring-boot-3-4
SELKS 10: la distribución especializada en la seguridad de redes celebra su décimo aniversario https://blog.elhacker.net/2024/06/selks-10-ids-ips-suricata-logstash-kibana-.html #Elasticsearch #logstash #suricata #kibana #selks #ids #ips
Lions, and tigers, and... #AI? Oh my?! 
/ 
/ 
In the log aggregation game, the biggest difficulty you face could be setting up parsing rules for your logs. 
In other words, getting log files into #Graylog is easy, but what about when you have a log source that does not neatly fall into one of the parsed out-of-the-box categories? 
It is a common joke in the field that as technology gets better, parsing data that can be given in a wide array of different formats — in particular, timestamps — remains very challenging. 
But, not to worry, friends! We've got just the thing to help you. This #GraylogLabs guide provides useful, quick examples and links to the primary methods of parsing logs. Take a look.
https://graylog.org/post/graylog-parsing-rules-and-ai-oh-my/ #logmanagement #logs #logstash
we‘ll have another elastic meetup in vienna tomorrow: TDD with #logstash by our host anyline and ES|QL, the new piped query language for #elasticsearch and #kibana
join us on https://meetu.ps/e/MHBLw/4d3Qg/i :)
#logstash about to land in the #elastic #kubernetes operator: https://github.com/elastic/cloud-on-k8s/pull/6732
this was long overdue :)