AUTHOR

Articles by Ross Wolf

Videos

Elastic Security opens public detection rules repo

Elastic Security has opened its detection rules repository to the world. We will develop rules in the open alongside the community, and we’re welcoming your community-driven detections. This is an opportunity to share collective security knowledge.

By
Ross Wolf
Elastic Security Intelligence & Analytics Team
Videos

Elastic Security opens public detection rules repo

Elastic Security has opened its detection rules repository to the world. We will develop rules in the open alongside the community, and we’re welcoming your community-driven detections. This is an opportunity to share collective security knowledge.

By
Ross Wolf
Elastic Security Intelligence & Analytics Team
Videos

EQL’s highway to shell

We’re excited to announce the new release of more EQL analytics and tooling, including an interactive shell, to make EQL even more usable and powerful.

By
Paul Ewing
Ross Wolf
Videos

Introducing Event Query Language

We created the Event Query Language (EQL) for hunting and real-time detection, with a simple syntax that helps practitioners express complex queries.

By
Ross Wolf
Videos

Getting started with EQL

EQL is a language to express relationships between events and has the power to normalize your data regardless of data source and not constrained by platform.

By
Paul Ewing
Ross Wolf
...
Videos

EQL for the masses

Event Query Language is an extensible, powerful language built in-house at Endgame to express relationships between security-relevant events.

By
Ross Wolf
Paul Ewing

Sign up for Elastic Cloud free trial

Spin up a fully loaded deployment on the cloud provider you choose. As the company behind Elasticsearch, we bring our features and support to your Elastic clusters in the cloud.

Start free trial