I would like to integrate my Azure Purview with Azure Sentinel. I have followed the steps described in the official documentation at this "https://learn.microsoft.com/en-us/purview/register-scan-...

I'm using Filebeat v8.8.0, and am trying to ingest Netflow data through a custom ingest pipeline to perform IP geo-location using a database that is not Maxmind. Currently, my Netflow data is enriched ...

I'm a bit confused how to best handle the following scenario with Elasticsearch. I've different types of documents, which have fields with semantically the same content but different field names (see ...

Im using elastic "Stack management" -> "Ingest pipelines" -> "Edit pipeline". In "Grok" processor fill fields "Pattern" with ^%{MESSAGE} and &...

currently presented with data can ingest a csv file.. Currently data is all in one column but need to split the data below into sperate columns currently a space indicates its a new column and char ...

I'm trying to make a piece of code that will be responsible for deleting an indexed file from the elasticsearch index, I pass with the indexed file md5(file name), to the id value. It is necessary to ...

I have to write an ingest pipeline for elasticsearch within an pipeline.yml file. I was able to retrieve my field with grok and was able to divide it with the split processor. Now, I want to assign ...

I'm new to programming. when used in php-es code "return $client->ingest()->putPipeline($params);" outputs an error "NoAliveNodes", but when using for example "return $...

We are using bitnami/elasticsearch helm chart for install elasticsearch cluster. We start with command: helm install --namespace esn elasticsearch bitnami/elasticsearch -f es_values_bitnami.yaml ...

I have documents containing the field "Status", this can have three values "Draft", "In Progress", or "Approved". I am trying to pass this document through a ...

I add the Ingest Attachment Processor Plugin on to Elastic. Than I create a very simple pdf file. This file (the content) I try to inject into Elastic. (see commands below) But the try to find a word ...

I'm trying to configure and use the Azure Data Explorer OneClick Ingest from blob container (continous ingest). Whatever I try the URL is never accepted, I always end up with this error: Invalid URL. ...

I have a copy pipeline set up that connects to an SFTP server (on Azure Synapse). I have used it to copy csv files and this works fine, but now I have the complex task to pull in a multi-layered xml ...

Source log sample from message field: {"log":"2022/02/15 22:47:07 insert into public.logs (time, level, message, hostname, loggerUID, appmodule) values ('2022-02-15 22:47:07.494330952','...

I'm using the ingest pipeline script processors to extract the day of the week from the local time for each document. I'm using the client_ip to extract the timezone, use that along with the timestamp ...