Elasticsearch on O segundo cérebro de Bryanhttps://bryanalbuquerque.dev/tags/elasticsearch/Recent content in Elasticsearch on O segundo cérebro de BryanHugo -- gohugo.iopt-BRBryan AlbuquerqueTue, 18 Apr 2023 00:00:00 +0000Elasticsearchhttps://bryanalbuquerque.dev/wiki/elasticsearch/Tue, 18 Apr 2023 00:00:00 +0000https://bryanalbuquerque.dev/wiki/elasticsearch/<p><em>You know, for search (and analysis)</em></p>You know, for search (and analysis)

Troubleshoot

Check rápido da saúde do cluster via REST API:

1export ENDPOINT=localhost:9200
2curl -X GET "$ENDPOINT/_cluster/health?wait_for_status=yellow&timeout=50s&pretty"
3curl -X GET "$ENDPOINT/_cluster/stats?human&pretty"
4curl -X GET "$ENDPOINT/_cluster/pending_tasks"
5curl -X GET "$ENDPOINT/_nodes"
6curl -X GET "$ENDPOINT/_nodes/stats"
7curl -X GET "$ENDPOINT/_cluster/settings?include_defaults=true&flat_settings=true"

Elasticsearch Interfaces

WebUI:

  • kibana
  • cerebro
  • elasticsearch-head
  • elastic-hq

Extensões SIEM

  • Elasticsearch Security
  • Zeek
  • Wazuh
  • HELK
  • Dsiem
  • S1EM
  • Pfelk
  • SIAC

Referências

]]>