Logstash Auditd filter will provide the structured logs on the ELK server, to monitor suspicious executed commands on the Linux system.
linux
elasticsearch
events
kibana
logstash
monitoring
attack
filebeat
filter
infrastructure-monitoring
siem
information-security
auditd-logstash-filter
-
Updated
Apr 24, 2020