Skip to content

Setup Elk for visualisation(kibana), as well as to recieve messages from different machines #287

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
prakharguptaujjain wants to merge 7 commits into
base: develop
Choose a base branch
from
Open

Setup Elk for visualisation(kibana), as well as to recieve messages from different machines #287

prakharguptaujjain wants to merge 7 commits into from

Conversation

@prakharguptaujjain
Copy link

@prakharguptaujjain prakharguptaujjain commented Mar 31, 2023
edited
Loading

Issue - #204

I have not added Elk packages to auto-download in Docker files yet.
Added code according to template

image

image
ALL TESTS PASSING

@AlyaGomaa AlyaGomaa changed the base branch from master to develop March 31, 2023 13:54
@eldraco
Copy link
Collaborator

eldraco commented May 23, 2023

Hi @prakharguptaujjain . Thanks for your wokr on the ELK module.
We have been reviewing it.

the main issue is that we don't want Slips to run ELK in the endpoint. We would like Slips to send alerts logs to a remote ELK.

The confusion came because we had this task as an 'internal' task, and then I decided to publish it here.

So, the module should export alerts remotely to an ELK that is already running in some service.
However we would need some instructions in the readme of the module on how to setup elk in case the people needs it.

Do you think you can do the changes so we can move forward with this?
thanks

@prakharguptaujjain
Copy link
Author

prakharguptaujjain commented May 28, 2023

Yes I can work on that, so I need a README instruction for people who want to setup and enable remote sending of logs

@eldraco
Copy link
Collaborator

eldraco commented May 29, 2023

Hi @prakharguptaujjain yes, exactly.
1- A readme with simple instructions on how to run ELK (probably a docker is fine)
2- code to make slips send there and what slips needs (remote, IP, port, user, pass)
please put the data needed from slips in the slips.conf file

@AnonymityAdvoc8
Copy link

AnonymityAdvoc8 commented Feb 12, 2025

Hi @eldraco,

I've notice this hasn't been worked on in a while. I can continue working on it. I would implement filebeat and allow users to send the logs to which ever ELK stack the want.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@prakharguptaujjain @eldraco @AnonymityAdvoc8