Logo

Logos/ElasticSearch.svg

@@ -0,0 +1,27 @@
+<?xml version="1.0" standalone="yes"?>
+<svg xmlns="http://www.w3.org/2000/svg" width="243" height="208">
+<path fill="#f7f6f6" d="M0 0L0 208L243 208L243 0L0 0z"/>
+<path fill="#ffc515" d="M49 64C61.1973 61.0961 75.4936 63 88 63L164 63C176.183 63 198.859 63.2494 202.539 47C203.539 42.5816 196.812 37.7022 194 35.1705C183.059 25.3201 169.3 17.938 155 14.375C117.031 4.91457 61.0137 22.3771 49 64z"/>
+<path fill="#343640" d="M42 81C39.9116 97.4389 39.8791 110.576 42 127C79.3435 127 117.767 129.641 155 126.91C167.773 125.973 178.002 116.28 177.541 103C176.984 86.953 162.867 81.0053 149 81L42 81z"/>
+<path fill="#585a62" d="M158.667 81.3333L159.333 81.6667L158.667 81.3333z"/>
+<path fill="#ffc515" d="M160 81L161 82L160 81z"/>
+<path fill="#585a62" d="M162 82L163 83L162 82z"/>
+<path fill="#ffc515" d="M163 82L164 83L163 82z"/>
+<path fill="#585a62" d="M41.3333 83.6667L41.6667 84.3333L41.3333 83.6667M165 83L166 84L165 83M168 85L169 86L168 85M169 86L170 87L169 86z"/>
+<path fill="#ffc515" d="M40 87L41 88L40 87z"/>
+<path fill="#585a62" d="M40 88L40 91L41 91L40 88M172 89L173 90L172 89M173 90L174 91L173 90M174 92L175 93L174 92z"/>
+<path fill="#ffc515" d="M175 93L176 94L175 93z"/>
+<path fill="#585a62" d="M175 94L176 95L175 94M39 95L39 99L40 99L39 95M176 96L177 97L176 96M177 99L177 102L178 102L177 99M177 105L177 108L178 108L177 105z"/>
+<path fill="#ffc515" d="M177 108L178 109L177 108z"/>
+<path fill="#585a62" d="M39 109L39 113L40 113L39 109M176 111L177 112L176 111z"/>
+<path fill="#ffc515" d="M39.3333 113.667L39.6667 114.333L39.3333 113.667z"/>
+<path fill="#585a62" d="M175 113L176 114L175 113z"/>
+<path fill="#ffc515" d="M175 114L176 115L175 114z"/>
+<path fill="#585a62" d="M174 115L175 116L174 115M173 117L174 118L173 117M40.3333 118.667L40.6667 119.333L40.3333 118.667M172 118L173 119L172 118z"/>
+<path fill="#ffc515" d="M40 120L41 121L40 120z"/>
+<path fill="#585a62" d="M169 121L170 122L169 121M168 122L169 123L168 122M41.3333 123.667L41.6667 124.333L41.3333 123.667M165 124L166 125L165 124M162 125L163 126L162 125z"/>
+<path fill="#ffc515" d="M163 125L164 126L163 125z"/>
+<path fill="#585a62" d="M158.667 126.333L159.333 126.667L158.667 126.333z"/>
+<path fill="#ffc515" d="M160 126L161 127L160 126z"/>
+<path fill="#04c0b4" d="M49 144C52.1232 154.618 60.3091 163.397 68 170.996C105.998 208.542 170.863 202.691 204 162C190.463 142.783 172.12 144 151 144L49 144z"/>
+</svg>

Solutions/Elastic Search/Data/Solution_ElasticSearch.json

@@ -0,0 +1,15 @@
+{
+  "Name": "Elastic Search",
+  "Author": "Microsoft - support@microsoft.com",
+  "Logo": "<img src=\"https://raw.githubusercontent.com/Azure/Azure-Sentinel/master/Logos/ElasticSearch.svg\" width=\"75px\" height=\"75px\">",
+  "Description": "[Elasticsearch](https://www.elastic.co/elasticsearch/) is a distributed, RESTful search and analytics engine capable of addressing a growing number of use cases. As the heart of the Elastic Stack, it centrally stores your data for lightning fast search, fine‑tuned relevancy, and powerful analytics that scale with ease. \n This Sentinel Solution contain playbooks to help enriching sentinel incident by querying elastic search ondemand or as and when incident occurs ",
+  "Playbooks": [
+    "Playbooks/CustomConnector/ElasticSearchCustomConnector/azuredeploy.json",
+    "Playbooks/ElasticSearchPlaybooks/ElasticSearch-EnrichIncident/azuredeploy.json"
+  ],
+  "Metadata": "SolutionMetadata.json",
+  "BasePath": "C:\\Repositories\\Azure-Sentinel\\Solutions\\Elastic Search",
+  "Version": "2.0.0",
+  "TemplateSpec": true,
+  "Is1PConnector": false
+}

Solutions/Elastic Search/SolutionMetadata.json

@@ -0,0 +1,15 @@
+{
+	"publisherId": "azuresentinel",
+	"offerId": "azure-sentinel-solution-elasticsearch",
+	"firstPublishDate": "2022-09-30",
+	"providers": ["Elastic"],
+	"categories": {
+		"domains" : ["Platform", "Security - Others", "IT Operations"]
+	},
+	"support": {
+	  "name": "Microsoft Corporation",
+	  "email": "support@microsoft.com",
+	  "tier": "Microsoft",
+	  "link": "https://support.microsoft.com"
+	}
+}