hilt86/elasticsearch_failed_invalid_ssh.json

Created December 14, 2018 12:20

Star () You must be signed in to star a gist
Fork () You must be signed in to fork a gist

Learn more about clone URLs
Clone this repository at <script src="https://gist.github.com/hilt86/fbdaf0473ccc087cb517089f16660100.js"></script>
Save hilt86/fbdaf0473ccc087cb517089f16660100 to your computer and use it in GitHub Desktop.

Download ZIP

JSON for Elasticsearch failed ssh

Raw

elasticsearch_failed_invalid_ssh.json

	{
	"query": {
	"terms":{"system.auth.ssh.event":["Failed","Invalid"],"boost":1}
	}
	}

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment