question

DonaldSHunterJr-2092 avatar image
0 Votes"
DonaldSHunterJr-2092 asked vipulsparsh-MSFT answered

Security information and event management Lab

Hello,

I have set up an ELK SIEM on my home laptop through Virtual Box and I am wanting to set up a server to running data through to see how the tool works and develop my skills. I know there is a cloud-based SIEM but I want to use the SIEM that I have set up. How can I go about doing this type of lab? Thank you.

V/r,
Donald S. Hunter

microsoft-sentinel
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

vipulsparsh-MSFT avatar image
0 Votes"
vipulsparsh-MSFT answered

@DonaldSHunterJr-2092 Thanks for reaching out.

This forum is dedicated for Microsoft Azure services. We will be glad to answer Microsoft SIEM solution "Sentinel" queries.
Looking at your question for elastic SIEM setup, I think the following link can help you with setting up a lab SIEM solution on elastic SIEM :

https://unicornsec.com/home/siem-home-lab-series-part-1
https://logz.io/learn/complete-guide-elk-stack/



Please remember to "Accept Answer" if any answer/reply helped, so that others in the community facing similar issues can easily find the solution.

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.