Elastic × Tines
Integrating Tines and Elastic enhances security operations by automating threat detection and response workflows, leveraging Elastic’s powerful search and analytics capabilities within Tines’ intuitive automation platform.
Pre-built templates
With Tines, you can easily take any action that has a defined API. We've already pre-built some of the most popular ones for you, so you can build quickly.
Build your own connections
With Tines, you can easily take any action that has a defined API using an HTTP request. To build even more quickly, copy a cURL command and paste it into the storyboard.
cURL request
curl -v -X GET --location "https://api.nasa.gov/neo/rest/v1/neo/browse?api_key=DEMO_KEY" -H 'Content-Type: application/json'Paste in your Tines story
Full workflow examples
Explore pre-built workflows for Elastic. Use them for inspiration or as a starting point to build your custom automation solution.
Elastic SIEM to Slack alert enrichment
Tools: Elastic, Slack, Tines
By Aaron Jewitt at Elastic
Download PCAP from Endace Probe triggered by intrusion detection
Tools: Elastic, Endace
By Roberto Cordeiro at Endace
Build and search MITRE ATT&CK semantic index in Elastic
Tools: Elastic, MITRE
Analyze Elastic alerts, block IPs, and notify in Slack and Tines Cases
Tools: Elastic, Google, GreyNoise, Slack, Tines
Normalize alerts from multiple sources using ChatGPT
Tools: CrowdStrike, Elastic, Lacework, OpenAI
Detect and alert performance issues in devices using Elastic and Slack
Tools: Elastic, Slack
Connect quickly
It takes minutes, not months, to connect to tools in Tines.
Explore more resources
Check out our blogs that mention Elastic, browse our learning paths, and more.
Blog
Announcing a new joint product offering from Tines and Elastic
Read now
Case study
Elastic IT and security analysts unlock 750 days of lost time
Read now
Learn
Tines University
Build your knowledge with dedicated learning paths at all levels.
Start learning
Learn
Learn to use Tines with our documentation
Go to docs