Hello,
I’m new with ELK/Grafana.
I have configured Winlogbeat to forward all windows events to ELK.
Now I just installed Grafana, all works well.
But I need help for a query, I dont’ know if it’s possible.
My data (table format in Kibana):
->LOG1:
HOST Laptop1
CATEGORY Laptop
PATH C:\Temp\test.PS1
->LOG2:
HOST Laptop3
CATEGORY Laptop
PATH C:\Test\cmd.exe
->LOG3:
HOST Server1
CATEGORY Server
PATH C:\dir\rm.sh
On my dashboard, I just add a Table, and Id’ like to show only machines with:
CATEGORY= Laptop
AND PATH= contain something with *.PS1
for these example, the result of this query will be DATA 1.
If someone can help me on it ?
Thanks
And good job for grafana !!