Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Dashboard for TLS protocol (#3604) #5722

Merged
merged 4 commits into from
Nov 28, 2017
Merged

Dashboard for TLS protocol (#3604) #5722

merged 4 commits into from
Nov 28, 2017

Conversation

adriansr
Copy link
Contributor

@adriansr adriansr commented Nov 27, 2017
edited by andrewkroh
Loading

This PR adds a TLS dashboard for Kibana 6.0+

Visualizations:

  • Sessions per minute
  • Server name cloud
  • Alerts
  • Versions supported by clients
  • Negotiated versions
  • Resumed sessions
  • Certificates (client & server)
  • Negotiated ciphers

Pending:

  • Dashboard for 5.x
  • Handshake performance histogram?
  • JA3 fingerprints?

tls-dashboard

@adriansr
TLS: Alerts field to be used on visualizations
5855d00 
The previous `alerts` field is not accessible from Kibana as it
is an array of objects.
@adriansr
Packetbeat: Dashboard for TLS
5a6f249
@adriansr
Packetbeat: TLS fields fixes
1c1f21f
@adriansr adriansr requested a review from andrewkroh November 27, 2017 19:48
@andrewkroh
Copy link
Member

Please add a screenshot to packetbeat/docs/images. We can include it in the docs once we have them.

@adriansr adriansr added the needs_backport PR is waiting to be backported to other branches. label Nov 27, 2017
andrewkroh
andrewkroh approved these changes Nov 27, 2017
View reviewed changes
Copy link
Member

@andrewkroh andrewkroh left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@andrewkroh andrewkroh mentioned this pull request Nov 27, 2017
Closed
3 tasks
@andrewkroh andrewkroh merged commit 220284f into elastic:master Nov 28, 2017
@adriansr adriansr deleted the tls/dashboard branch November 28, 2017 09:51
adriansr added a commit to adriansr/beats that referenced this pull request Nov 28, 2017
@adriansr
Dashboard for TLS protocol (elastic#3604) (elastic#5722)
4800c1f 
* TLS: Alerts field to be used on visualizations

The previous `alerts` field is not accessible from Kibana as it
is an array of objects.

* Packetbeat: Dashboard for TLS

* Packetbeat: TLS fields fixes

* Screenshot for TLS dashboard
@adriansr adriansr mentioned this pull request Nov 28, 2017
Merged
@ruflin ruflin removed the needs_backport PR is waiting to be backported to other branches. label Nov 28, 2017
@ruflin
Copy link
Contributor

ruflin commented Nov 28, 2017

Removing needs_backport label as backport PR can be found here: #5731

andrewkroh pushed a commit that referenced this pull request Nov 29, 2017
@adriansr @andrewkroh
Dashboard for TLS protocol (#3604) (#5722) (#5731)
065b4d3 
* TLS: Alerts field to be used on visualizations

The previous `alerts` field is not accessible from Kibana as it
is an array of objects.

* Packetbeat: Dashboard for TLS

* Packetbeat: TLS fields fixes

* Screenshot for TLS dashboard
leweafan pushed a commit to leweafan/beats that referenced this pull request Apr 28, 2023
@adriansr @andrewkroh
Dashboard for TLS protocol (elastic#3604) (elastic#5722) (elastic#5731)
761834d 
* TLS: Alerts field to be used on visualizations

The previous `alerts` field is not accessible from Kibana as it
is an array of objects.

* Packetbeat: Dashboard for TLS

* Packetbeat: TLS fields fixes

* Screenshot for TLS dashboard
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andrewkroh andrewkroh andrewkroh approved these changes

Assignees
No one assigned
Labels
:Dashboards Packetbeat review v6.1.0
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@adriansr @andrewkroh @ruflin