Git-Mirrors/shell-whiz-toolkit
1
0
Fork 0
mirror of https://github.com/autistic-symposium/shell-whiz-toolkit.git synced 2025-05-11 11:15:13 -04:00
Code Issues Projects Releases Packages Wiki Activity
shell-whiz-toolkit/elasticsearch
History
writer e6794a8954 move shell scripts and zsh and add fav vscode themes
2024-10-16 14:34:03 +09:00
..
grabbing_es_data.py add things resources from the last 5 years over machines 2024-10-15 09:59:09 +09:00
README.md move shell scripts and zsh and add fav vscode themes 2024-10-16 14:34:03 +09:00
set_log.py add things resources from the last 5 years over machines 2024-10-15 09:59:09 +09:00

README.md

elastalert hacks


curl -s logs.HOST.com:9200/logstash-2017.09.08/_search\?q=ty_params.ProcessName:osqueryd\&size=10000\&sort=@timestamp:desc | jq -r '.hits.hits[]._source.ty_params.Username' | sort | uniq -c | sort -nr