THM Room: Investigating with ELK 101

Introduction

What?

Investigating VPN logs.

Why?

To identify anomalies.

How?

• Elastic stack