Preparing the data as we described previously was fundamental to being able to properly analyze the data with Elastic ML and reveal the steps of an attack. In this section, we will go through an investigation scenario of a DNS exfiltration attack and leveraging the anomalies that are detected by using Elastic ML to guide the analyst in the process.
- Title Page
- Copyright and Credits
- Dedication
- About Packt
- Contributors
- Preface
- Machine Learning for IT
- Installing the Elastic Stack with Machine Learning
- Event Change Detection
- IT Operational Analytics and Root Cause Analysis
- Security Analytics with Elastic Machine Learning
- Alerting on ML Analysis
- Using Elastic ML Data in Kibana Dashboards
- Using Elastic ML with Kibana Canvas
- Forecasting
- ML Tips and Tricks
- Other Books You May Enjoy
Investigation analytics
-
No Comment
..................Content has been hidden....................
You can't read the all page of ebook, please click here login for view all page.