I find the dashboard's of security analytics to be lacking in features and is quite rigid in how you can have your dashboard laid out.
I've been doing some research and have stumbled across Kibana as part of the ELK stack.
I was curious if anyone has implemented Kibana as a replacement to the default dashboard that SA provides. If you did, how did you implement it and what sorts of dashboards have you developed.
- Community Thread
- Forum Thread
- RSA NetWitness
- RSA NetWitness Platform
As far as I know, the only type of such integration available in open resources is NW + maltego maybe you can use some of those ideas: