Replay Data with Cribl into Elastic Security and Isolate Hosts Using Elastic Agent

Book a demo Log in Sign up

Book a demo

Product

Get to know Tines

Meet the product

Explore our core capabilities to transform your workflows.

Features and capabilities

Cases

Automation for the threats you know, cases for the ones you don’t.

Workbench

Take action and access your data in real time using AI chat.

AI in Tines

Leverage the power of AI in your most important workflows.

Build apps

Keep humans in the loop with apps built with Tines pages, directly in your workflows.

What’s new?

Discover our latest updates and releases.

Solutions

By product

Connect Tines to any of your favorite products. If it offers an API, Tines connects with it.

Professional services

Accelerate your time to value, and increase your lifetime value with Tines.

By team

Security IT Infrastructure Engineering Product

Tines for

Partners

Work smarter with Tines’ trusted partners.

Federal

Reach your zero trust goals and reinforce your security posture.

MSSPs

Transform MSSP operations with Tines.

Resources

Learn

Library

Get inspiration from hundreds of pre-built workflows.

University

Learn how to build in Tines; from the basics to advanced building.

Tines Explained ^↗

Answers and advice from the team that built Tines.

Docs

API Docs

Bootcamps

Discover

Blog

Updates from Tines; the smart, secure workflow builder for your whole team.

Case studies

Discover how companies apply Tines to transform he way their teams operate.

Company

About

We power the world’s most important workflows.

Careers

Join a world-class team and make an impact.

Stay in touch

Contact

Details for support and general enquiries.

Slack Community ^↗

Join our community of builders and customers on Slack.

Newsroom

Updates and resources for the press.

Pricing

← Go back to library

Receive a webhook from Elastic to initiate the creation of a SIEM case and link alerts. Analyze the IP, add location and enrichment data, query Elasticsearch for related hits, and decide whether to isolate the host.

Tools

Cribl, Elastic

How it works

Import this story to your tenant, from where you can adapt it to meet your unique needs.

Import

Was this story helpful?