章次 章 次
-
0:05
In this video, we're going to take a look at some examples of common queries you can do in ELK using the KQL search language. Now, a lot of these are going to be similar to what we did if you watched the video on the common Splunk queries. …
-
1:16章章章 章章 章 次 章 第一章 章 第一章 2: So in this one, we're just going to take a look at some of the common queries. 301s · Speaker 3
So in this one, we're just going to take a look at some of the common queries. So we're going to take a look at searching for suspicious account logins, different process launches, specifically suspicious one, that was hard to say, any sort…
-
6:17
You see it auto -completed, the quotation marks. And we're going to search for encoded. And the wildcard here. Search, no results, but again, perfectly fine to not find results in a threat hunt. If you're sure that your query is correct and…