Stijn HolzhauerIngesting CloudTrail to Elastic StackWith the usage of a cloud provider like AWS comes the requirement for Security Operations to keep track of activities performed by the…6 min read·Dec 1, 2023----
Stijn HolzhauerUsing ES|QL to detect non-compliant instances — pt3This is part 3, and the final part, in a series where are going through the steps of5 min read·Nov 23, 2023----
Stijn HolzhauerExpanding Image builder to track valid AMI usage with Elastic — pt2In a previous post I setup AWS EC2 image builder to install Elastic Agent onto an AMI in such a way new instances will automatically…5 min read·Nov 16, 2023----
Stijn HolzhauerAdd Elastic Agent to your AWS AMI’s using EC2 Image BuilderWithin a security monitoring team one of the things you have to worry about is coverage, do all endpoints contain the required tools for…·3 min read·Nov 9, 2023----
Stijn HolzhauerElastic security AI assistent — AWS BedrockWith the release of 8.11 Elastic introduced support for the Amazon Web Services Bedrock service, specifically the Claude and Claude…3 min read·Nov 8, 2023----
Stijn HolzhauerExploring Elastic CSPM (8.8)Exploring the CSPM integration from elastic and discovering how easy it is to setup, use and ultimatly fix your security posture.3 min read·Jun 13, 2023----
Stijn HolzhauerDetecting new and inactive users using Elastic detectionsHave you ever needed the ability to detect a new user authenticating to your system or detect a user which has been dormant for a while…2 min read·Oct 24, 2022----
Stijn HolzhauerSetting up central GCP audit monitoring with ElasticHow can you combine centralized components to monitor infinite amounts of Google Cloud Projects whilest managing a single project and…3 min read·Jul 13, 2022----
Stijn Holzhauerspring4shell detection and response — ElasticUsing the Elastic stack to detect potential malicious requests and explore exposure to the RCE flaw in the Java Spring Framework.2 min read·Apr 1, 2022----
Stijn HolzhauerIngest AWS CloudTrail through Cloudwatch & Logstash into ElasticsearchHow to use logstash instead of Filebeat to ingest AWS CloudTrail logs in Elastic Common Schema.3 min read·Jan 14, 2022----