Clément Fouque

icon indicating a website link https://clementfouque.com/

Results 4 comments of Clément Fouque

Detailed filtering and/or multiple label functionality

+1, we can't really use this app as we are either overloaded with notifications, either we don't receive all as we can all set one label.

Elasticsearch Query Stack Alert Aggregation Support

We have another use case for Vulnerability Management where we want to notify the different teams. We would need to have aggregations to notify based on the severity. The moustache...

[New Rule] Large data exfiltration from elasticsearch clusters

@elastic/threat-research-and-detection-engineering I’m surprised to see this issue being closed without any review from your side. If you believe it's not relevant or not a priority, that’s fine, we can keep...

[New Rule] Large data exfiltration from elasticsearch clusters

@Samirbous I don't have specific logs in mind. It's a general rule, not dependant to the source. I'm thinking of those rules: - X% of total data of the cluster...