Comments (3)
neu5ron
commented on June 2, 2024
same and I agree, but converting over thousands of lines of configs for the benefit of saving a few resources does not seem ideal. Using logstash for 8 years I have not run into any issues that I am unable to solve.
But yes, vector dev is theoretically much easier and in practice seems much more performant. but again, with this use case doesn't make sense to switch any time soon.
from helk.
neu5ron
commented on June 2, 2024
there isn't a vector dev, logstash pipeline, or any other open source ETL that I have seen that even after 2 years of no updates is more involved than HELK.. even thousands of dollar SANS classes SOF-ELK is no where near.
It would take a lot to lift this over to vector.
but with that said, if you want to help I would be open @ypid-geberit
from helk.
ypid-geberit
commented on June 2, 2024
I understand, thanks for your feedback. I try to avoid touching Logstash when possible and rather migrate everything that I have to Vector (which is obviously less than what HELK has). So I will push https://github.com/geberit/event-processing-framework forward. I will see how I can integrate with HELK or cover some of its use cases.
from helk.
Related Issues (20)
- Running SIGMA from Kibana
- Documentation leaves NXLog configuration blank
- Installation question
- Missing Dockerfile for otrf/jupyter-hunter docker image HOT 1
- No data in All Miter Att & ck,
- helk-kibana stuck at restarting
- Other systems integration within HELK
- What is the difference between HELK and "Spark + Graphframes + ELK" ?
- Every time I restart the machine the kibana UI is not longer accessible
- How filter kibana' s logs with ossem yamls?
- Need Metric Beats Config
- unable to access 'https://github.com/Cyb3rWard0g/HELK.git/'
- Unable to complete HELK installation HOT 1
- Docker IP subnets
- HELK with Kafka (not winlogbeats but Filebeat)
- Ubuntu 18.04 to 20.04
- EQL and Security options
- SSL error when accesing Spark Master UI
- Elastalert send alert to Slack
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from helk.