Skip to content

[Marketplace Contribution] Elastic Security for SIEM#43609

Closed
xsoar-bot wants to merge 1 commit intodemisto:contrib/xsoar-contrib_whsmith1223-contrib-ElasticSecurityForSIEMfrom
xsoar-contrib:whsmith1223-contrib-ElasticSecurityForSIEM
Closed

[Marketplace Contribution] Elastic Security for SIEM#43609
xsoar-bot wants to merge 1 commit intodemisto:contrib/xsoar-contrib_whsmith1223-contrib-ElasticSecurityForSIEMfrom
xsoar-contrib:whsmith1223-contrib-ElasticSecurityForSIEM

Conversation

@xsoar-bot
Copy link
Copy Markdown
Contributor

@xsoar-bot xsoar-bot commented Mar 18, 2026
edited by marketplace-content-sync
Loading

Status

  • In Progress
  • Ready
  • In Hold - (Reason for hold)

Contributor

@whsmith1223

Description

This pack allows for using Elastic Security for SIEM for security operations management. It also allows for searching Elastic logs.

Notes

These contributions help to boost the severe lack of SIEM capabilities with the Elasticsearch v2 integration. By adding support for Kibana API commands, users can integrate into case management and much more than simple log searching that exists today.

Auto-Generated Documentation Requiring Modification

Video Link

Short demo video of the Pack usage. Speeds up the review. Optional but recommended. Use a video sharing service such as Google Drive or YouTube.

relates: https://jira-dc.paloaltonetworks.com/browse/CIAC-16312

@content-bot content-bot added Contribution Thank you! Contributions are always welcome! External PR Community Support Level Indicates that the contribution is for Community supported pack labels Mar 18, 2026
@content-bot content-bot changed the base branch from master to contrib/xsoar-contrib_whsmith1223-contrib-ElasticSecurityForSIEM March 18, 2026 22:04
@content-bot content-bot requested a review from kamalq97 March 18, 2026 22:04
@content-bot
Copy link
Copy Markdown
Contributor

content-bot commented Mar 18, 2026

Thank you for your contribution. Your generosity and caring are unrivaled! Rest assured - our content wizard @kamalq97 will very shortly look over your proposed changes.
For your convenience, here is a link to the contributions SLAs document.

@content-bot
Copy link
Copy Markdown
Contributor

content-bot commented Mar 18, 2026

Thanks for contributing to the XSOAR marketplace. To receive credit for your generous contribution, please ask the reviewer to update your information in the pack contributors file. See more information here link

@content-bot
Copy link
Copy Markdown
Contributor

content-bot commented Mar 18, 2026

🤖 AI-Powered Code Review Available

Hi @kamalq97, you can leverage AI-powered code review to assist with this PR!

Available Commands:

  • @marketplace-ai-reviewer start review - Initiate a full AI code review
  • @marketplace-ai-reviewer re-review - Incremental review for new commits

@content-bot content-bot added the Contribution Form Filled Whether contribution form filled or not. label Mar 18, 2026
@kamalq97 kamalq97 requested a review from barryyosi-panw March 23, 2026 13:26
@kamalq97 kamalq97 assigned barryyosi-panw and unassigned kamalq97 Mar 23, 2026
@kamalq97 kamalq97 removed their request for review March 23, 2026 13:26
@barryyosi-panw
Copy link
Copy Markdown
Contributor

barryyosi-panw commented Mar 26, 2026

Hi @whsmith1223 before I start reviewing your contribution, I'd ask you to rename the pack to CommunityElasticsearch to reflect its purpose as a complementary pack for the XSOAR supported one.

In addition, please drop the duplicated commands from the Elasticsearch_v2 integration, otherwise it would conflict if both integrations are configured, accordingly the integration can be named just Kibana.

@whsmith1223
Copy link
Copy Markdown

whsmith1223 commented Apr 8, 2026

Just a heads up I submitted #43781 with the proposed changes

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@barryyosi-panw barryyosi-panw Awaiting requested review from barryyosi-panw

Assignees

@barryyosi-panw barryyosi-panw

Labels

Community Support Level Indicates that the contribution is for Community supported pack Contribution Form Filled Whether contribution form filled or not. Contribution Thank you! Contributions are always welcome! External PR

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@xsoar-bot @content-bot @barryyosi-panw @whsmith1223 @kamalq97