elasticsearch-python-225x225

Elasticsearch Client Programming (2/2) – Python

The first article in this two part series focused on developing Elasticsearch clients with Perl. Elasticsearch also has an excellent Python library which lets you search for and analyze your data with one of the many mathematics and machine learning libraries available for Python. In this article I’ll cover how to create an Elasticsearch client…

elasticsearch-perl-225x225

Elasticsearch Client Programming (1/2) – Perl

Since creating a log management system for the OSSEC HIDS with Elasticsearch, I have been busy applying this useful search technology in other projects. Elasticsearch is a marvelous system for ingesting streaming data that gets indexed on the fly and quickly searching your data. The Elasticsearch community provides client libraries that expose their search API in several…

ossec-does-elasticsearch-225x225

OSSEC Log Management with Elasticsearch

Among the many useful features of OSSEC is its capability to send alerts to any system that can consume syslog data. This makes it easy to combine OSSEC with a number of 3rd party SIEMs to store, search and visualize security events.  Splunk for OSSEC is one such system that works on top of the Splunk…