Skip to main content

Elasticsearch

Download With Dependencies

Search for and analyze data in real time. Supports version 6 and later.

Elasticsearch is the distributed search and analytics engine at the heart of the Elastic Stack and where the indexing, search, and analysis magic happens.
Elasticsearch offers speed and flexibility to handle data in a wide variety of use cases.

What does this pack do?

This pack provides an integration with the Elasticsearch API and allows you to

  • Query Elasticsearch instances using DSL, EQL and Lucene syntaxes.
  • Search an index in Elasticsearch
  • Index a document into an Elastisearch index.

In addition, you can fetch incidents with predefined query.

Elasticsearch is the distributed search and analytics engine at the heart of the Elastic Stack and where the indexing, search, and analysis magic happens.
Elasticsearch offers speed and flexibility to handle data in a wide variety of use cases.

What does this pack do?

This pack provides an integration with the Elasticsearch API and allows you to

  • Query Elasticsearch instances using DSL, EQL and Lucene syntaxes.
  • Search an index in Elasticsearch
  • Index a document into an Elastisearch index.

In addition, you can fetch incidents with predefined query.

PUBLISHER

Cortex

PLATFORMS

Cortex XSOARCortex XSIAM

INFO

CertificationRead more
Supported ByCortex
CreatedJuly 20, 2020
Last ReleaseFebruary 20, 2024
WORKS WITH THE FOLLOWING INTEGRATIONS:

DISCLAIMER
Content packs are licensed by the Publisher identified above and subject to the Publisher’s own licensing terms. Palo Alto Networks is not liable for and does not warrant or support any content pack produced by a third-party Publisher, whether or not such packs are designated as “Palo Alto Networks-certified” or otherwise. For more information, see the Marketplace documentation.