Too Long; Didn't Read
ElastAlert Configuration for n00bs — Part 2,2,3,182 reads. Read Part 1 of the series on Elastalert and how to use it in the next part. The first part will show how to create a rule. The next part we'll see each rule type in detail. How to create custom rule type and enhance data in next part. The second part will see how to run a custom rule for the first time. The last part will be shown how to set an index in elastic search to write.