Skip to content

Instantly share code, notes, and snippets.

@Liblor

Liblor/es-kb-indices.md

Created June 8, 2023 12:52
Show Gist options
  • Save Liblor/d82c216aa80ef4cb585a6c58f01e5ff3 to your computer and use it in GitHub Desktop.
Save Liblor/d82c216aa80ef4cb585a6c58f01e5ff3 to your computer and use it in GitHub Desktop.
Download ZIP
Elasticsearch/Kibana: Indices
Raw
es-kb-indices.md

Elasticsearch & Kibana Indices

Indices used by kibana or the security integration.

.kibana-event-log*

Kibana event logs which include detection rule execution logs

.metrics-endpoint.metadata_united_default

Metrics of the "Elastic Defend" / "Elastic Endpoint Security" integration

.alerts-security.alerts-*

Alerts raised by detection rules

.fleet-files-agent

Metadata for files created by fleets -> diagnostics exports (>= 8.7.0)

.fleet-files-endpoint

Metadata for files created by the endpoint integration

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment