Elastic Security guided journey

Elastic Security delivers SIEM, endpoint security, and cloud security.

• Intro to Elastic Security

Take a sneak peek at how easy it is to launch your first deployment in any of our 50+ supported regions.

• Learn how you can instantly deploy Elastic

Experiencing the power of Elastic begins with ingesting your data. The following resources help you establish visibility across your attack surface.

• First: Install Elastic Agent
• Second: Install Elastic Defend integration
• Third: Explore additional data integrations

Now for the fun part — exploring what's happening in your environment. The documentation below walks you through various visualizations to help you explore your environment.

• Visualize system data in Host view
• Explore network data in Network view
• Investigate events in Timeline
• Explore host processes in Analyzer View

Here, we cover how to enable Elastic Security's prebuilt detection rules and machine learning jobs to automatically filter and remediate known threats like malware, ransomware, and more.

• Automate ransomware and malware prevention
• Activate prebuilt detection rules
• Implement machine learning jobs
• Explore the latest findings of Elastic Security Labs

Elastic's powerful search engine, renowned for its fast querying across large data sets, is the platform of choice for threat hunting. Let's put it to the test with your data. Use the following resources to perform your own investigations — from initial triage to closing a case.

• View the Detection and Response dashboard

• View alert details

• Open a case
• Invoke response actions on an endpoint

Now that you're up and running with Elastic Security, take your security operations to the next level with these helpful guides.

• Threat Hunting Guide
• Guide to High-volume Data Sources