DS
Uploaded byDaliya Spasova
371 views

Limitless xdr meetup

Limitless XDR with Elastic Security introduces the first free and open extended detection and response (XDR) solution that unifies security information and event management (SIEM) and endpoint security. XDR modernizes security operations by enabling analytics across all data sources, automating key processes, and providing native endpoint security to every host. Elastic Security provides limitless visibility through hundreds of integrations, limitless data through long-term storage, and limitless analysis across multi-cloud environments.

Embed presentation

Download to read offline
Limitless XDR with Elastic Security James Spiteri Principal PMM  Elastic Security September 2nd, 2021
Open to all Elastic Enterprise Search Elastic Security Elastic Observability Kibana Elasticsearch Beats Logstash Elastic Cloud Elastic Cloud on Kubernetes Elastic Cloud Enterprise Self-Managed Elastic Stack
Today 2020 Anti-ransomware in Agent 7.12 2021 7.10 Correlation with EQL 7.6 SIEM goes GA 7.8 Workflow connectors & prebuilt detections Endgame integration 7.5 SIEM app introduced EPP/XDR goes GA 7.14 Case management 7.7 Anti-malware in Agent 7.9 Searchable Snapshots 7.11 Endgame acquired Threat intelligence 7.13
We’ve met our next major milestone in our vision for joining forces with Endgame: Elastic introduces the first free and open, Limitless XDR  unifying SIEM and Endpoint Security for analysts everywhere.
SIEM EDR EPP XDR NGAV HIPS NIDS
X is for eXtended D is for Detection R is for Response
Why do we need XDR? “We noticed this network activity from our endpoint events, did we see anything on our firewalls?” “This user is downloading files from s3 onto their desktop, can we view the s3 events?”
Limitless XDR XDR modernizes security operations, enabling analytics across all data, automating key processes, and bringing native endpoint security to every host. SIEM Endpoint Security ...
What is “Limitless”? Limitless visibility Hundreds of one-click integrations, a community of extensions, and simple custom ingestion with a single Agent Limitless data Action frozen storage data, like S3, for years of search, threat intelligence, dashboards, reports, and more Limitless value Elastic Security is all inclusive, with no price per seat, agent, GB ingested, etc. Deploy anywhere on any cloud or on prem (or both) Limitless analysis Search, correlate, look for outliers with machine learning, finding threat intelligence, aggregate results, prioritize, and investigate across multi-cloud environments
Elastic Security Pre-execution prevention ❏ Malware prevention ❏ Ransomware prevention Post-execution prevention ❏ Behavioral ransomware Prevention Collect Continuous visibility ❏ Kernel-level data collection ❏ Tailored host data collection ❏ Ad-hoc host analysis via osquery Prevent Elastic Agent ❏ Alert triage and hunting workflows ❏ Insights, context, and recommendations ❏ Threat intel. integrations ❏ Prebuilt detections: use cases, rules, ML models ❏ Advanced analytics, interactive visualizations, root-cause analysis ❏ Fast and scalable search platform, open data schema, on-prem to multi-cloud Detect Elastic Stack ❏ Investigation & response workflows ❏ External alert actions: email, Slack, SOAR & ITSM platforms ❏ External case connectors: IBM, JIRA, ServiceNow, Swimlane ❏ Simple custom connections Respond Elastic Stack ❏ On-demand osquery inspection ❏ Remote host isolation Elastic Agent
11 Live Demo
Thank you elastic.co/security

More Related Content

PPTX
Introduction to SIEM.pptx
byneoalt
 
PDF
Q radar architecture deep dive
byKamal Mouline
 
PPTX
Security Information Event Management - nullhyd
byn|u - The Open Security Community
 
PPTX
Security Information and Event Management (SIEM)
byhardik soni
 
PPTX
Splunk Phantom SOAR Roundtable
bySplunk
 
PDF
IBM QRadar Security Intelligence Overview
byCamilo Fandiño Gómez
 
PDF
Intelligence Failures of Lincolns Top Spies: What CTI Analysts Can Learn Fro...
byMITRE ATT&CK
 
PPTX
Misp(malware information sharing platform)
byNadim Kadiwala
 
Introduction to SIEM.pptx
byneoalt
 
Q radar architecture deep dive
byKamal Mouline
 
Security Information Event Management - nullhyd
byn|u - The Open Security Community
 
Security Information and Event Management (SIEM)
byhardik soni
 
Splunk Phantom SOAR Roundtable
bySplunk
 
IBM QRadar Security Intelligence Overview
byCamilo Fandiño Gómez
 
Intelligence Failures of Lincolns Top Spies: What CTI Analysts Can Learn Fro...
byMITRE ATT&CK
 
Misp(malware information sharing platform)
byNadim Kadiwala
 

What's hot

PDF
Empower Your Security Practitioners with Elastic SIEM
byElasticsearch
 
PDF
Container Security Using Microsoft Defender
byRahul Khengare
 
PPTX
Microsoft Defender for Endpoint
byCheah Eng Soon
 
PDF
PHDays 2018 Threat Hunting Hands-On Lab
byTeymur Kheirkhabarov
 
PDF
What is SIEM? A Brilliant Guide to the Basics
bySagar Joshi
 
PDF
Hunting for Privilege Escalation in Windows Environment
byTeymur Kheirkhabarov
 
PPTX
SOC and SIEM.pptx
bySandeshUprety4
 
PDF
Cis controls v8_guide (1)
byMHumaamAl
 
PPTX
Cyber Defense Matrix: Revolutions
bySounil Yu
 
PDF
Qradar - Reports.pdf
byPencilData
 
PPTX
CyberSecurity Best Practices for the IIoT
byCreekside Marketing Group, LLC
 
PPTX
Security Operation Center Fundamental
byAmir Hossein Zargaran
 
PPTX
Security Information and Event Management (SIEM)
byk33a
 
PPTX
IBM Security QRadar
byVirginia Fernandez
 
PDF
SIEM POC Assessment.pdf
byReZa AdineH
 
PDF
Governance of security operation centers
byBrencil Kaimba
 
PDF
Vulnerability Assessment Report
byHarshit Singh Bhatia
 
PPTX
Effective Threat Hunting with Tactical Threat Intelligence
byDhruv Majumdar
 
PPTX
Purple Teaming with ATT&CK - x33fcon 2018
byChristopher Korban
 
DOC
SIEM
byvikasraina
 
Empower Your Security Practitioners with Elastic SIEM
byElasticsearch
 
Container Security Using Microsoft Defender
byRahul Khengare
 
Microsoft Defender for Endpoint
byCheah Eng Soon
 
PHDays 2018 Threat Hunting Hands-On Lab
byTeymur Kheirkhabarov
 
What is SIEM? A Brilliant Guide to the Basics
bySagar Joshi
 
Hunting for Privilege Escalation in Windows Environment
byTeymur Kheirkhabarov
 
SOC and SIEM.pptx
bySandeshUprety4
 
Cis controls v8_guide (1)
byMHumaamAl
 
Cyber Defense Matrix: Revolutions
bySounil Yu
 
Qradar - Reports.pdf
byPencilData
 
CyberSecurity Best Practices for the IIoT
byCreekside Marketing Group, LLC
 
Security Operation Center Fundamental
byAmir Hossein Zargaran
 
Security Information and Event Management (SIEM)
byk33a
 
IBM Security QRadar
byVirginia Fernandez
 
SIEM POC Assessment.pdf
byReZa AdineH
 
Governance of security operation centers
byBrencil Kaimba
 
Vulnerability Assessment Report
byHarshit Singh Bhatia
 
Effective Threat Hunting with Tactical Threat Intelligence
byDhruv Majumdar
 
Purple Teaming with ATT&CK - x33fcon 2018
byChristopher Korban
 
SIEM
byvikasraina
 

Similar to Limitless xdr meetup

PDF
Elastic SIEM (Endpoint Security)
byKangaroot
 
PDF
Keynote: Elastic Security evolution and vision
byElasticsearch
 
PDF
Elastic Security Brochure
byJoseph DeFever
 
PDF
Elastic Security keynote
byElasticsearch
 
PDF
SIEM, malware protection, deep data visibility — for free
byElasticsearch
 
PDF
Free and open cloud security posture monitoring
byElasticsearch
 
PPTX
c0c0n Elastic Security Workshop - 7.7 [Elastic SIEM].pptx
bycemybone
 
PDF
Elastic Security : Protéger son entreprise avec la Suite Elastic
byElasticsearch
 
PDF
Securing the Elastic Stack for free
byElasticsearch
 
PDF
Elastic Security Solution Brief
byJoseph DeFever
 
PDF
Keynote: Elastic Security evolution and vision
byElasticsearch
 
PPTX
How Elastic Security Meets SOC Needs
byAnna Ossowski
 
PDF
Elastic Security: Proteção Empresarial construída sobre o Elastic Stack
byElasticsearch
 
PDF
Oscar Cabanillas - Elastic - OSL19
bymarketingsyone
 
PDF
Conferencia principal: Evolución y visión de Elastic Security
byElasticsearch
 
PDF
Elastic Security: Your one-stop OODA loop shop
byElasticsearch
 
PDF
Palestra de abertura: Evolução e visão do Elastic Security
byElasticsearch
 
PDF
Obtén visibilidad completa y encuentra problemas de seguridad ocultos
byElasticsearch
 
PDF
Security Starts at the Endpoint
byElasticsearch
 
PDF
Reinventing enterprise defense with the Elastic Stack
byElasticsearch
 
Elastic SIEM (Endpoint Security)
byKangaroot
 
Keynote: Elastic Security evolution and vision
byElasticsearch
 
Elastic Security Brochure
byJoseph DeFever
 
Elastic Security keynote
byElasticsearch
 
SIEM, malware protection, deep data visibility — for free
byElasticsearch
 
Free and open cloud security posture monitoring
byElasticsearch
 
c0c0n Elastic Security Workshop - 7.7 [Elastic SIEM].pptx
bycemybone
 
Elastic Security : Protéger son entreprise avec la Suite Elastic
byElasticsearch
 
Securing the Elastic Stack for free
byElasticsearch
 
Elastic Security Solution Brief
byJoseph DeFever
 
Keynote: Elastic Security evolution and vision
byElasticsearch
 
How Elastic Security Meets SOC Needs
byAnna Ossowski
 
Elastic Security: Proteção Empresarial construída sobre o Elastic Stack
byElasticsearch
 
Oscar Cabanillas - Elastic - OSL19
bymarketingsyone
 
Conferencia principal: Evolución y visión de Elastic Security
byElasticsearch
 
Elastic Security: Your one-stop OODA loop shop
byElasticsearch
 
Palestra de abertura: Evolução e visão do Elastic Security
byElasticsearch
 
Obtén visibilidad completa y encuentra problemas de seguridad ocultos
byElasticsearch
 
Security Starts at the Endpoint
byElasticsearch
 
Reinventing enterprise defense with the Elastic Stack
byElasticsearch
 

More from Daliya Spasova

PDF
2020 07-30 elastic agent + ingest management
byDaliya Spasova
 
PDF
Security sizing meetup
byDaliya Spasova
 
PDF
Run the elastic stack on kubernetes with eck
byDaliya Spasova
 
PPTX
Geo network 4 elasticsearch (1)
byDaliya Spasova
 
PDF
Dynamic presentations with_canvas
byDaliya Spasova
 
PDF
October 2020 meetup
byDaliya Spasova
 
PDF
Meetup 13 08 2020
byDaliya Spasova
 
PDF
Elastic maps application_21_10_20
byDaliya Spasova
 
PDF
Q&a on running the elastic stack on kubernetes
byDaliya Spasova
 
PDF
S2 e elastic observability per i servizi core banking - mar 23, 2021
byDaliya Spasova
 
PDF
Meetup ilm virtual emea
byDaliya Spasova
 
PDF
Data exploration using elastic stack for beginners
byDaliya Spasova
 
PDF
Covid19 map presentation
byDaliya Spasova
 
PDF
Verba @ elastic
byDaliya Spasova
 
PDF
Food safety risks the elastic stack to the rescue
byDaliya Spasova
 
PPTX
Spring meetup elasticsearch
byDaliya Spasova
 
PDF
Kibana webinar (1)
byDaliya Spasova
 
2020 07-30 elastic agent + ingest management
byDaliya Spasova
 
Security sizing meetup
byDaliya Spasova
 
Run the elastic stack on kubernetes with eck
byDaliya Spasova
 
Geo network 4 elasticsearch (1)
byDaliya Spasova
 
Dynamic presentations with_canvas
byDaliya Spasova
 
October 2020 meetup
byDaliya Spasova
 
Meetup 13 08 2020
byDaliya Spasova
 
Elastic maps application_21_10_20
byDaliya Spasova
 
Q&a on running the elastic stack on kubernetes
byDaliya Spasova
 
S2 e elastic observability per i servizi core banking - mar 23, 2021
byDaliya Spasova
 
Meetup ilm virtual emea
byDaliya Spasova
 
Data exploration using elastic stack for beginners
byDaliya Spasova
 
Covid19 map presentation
byDaliya Spasova
 
Verba @ elastic
byDaliya Spasova
 
Food safety risks the elastic stack to the rescue
byDaliya Spasova
 
Spring meetup elasticsearch
byDaliya Spasova
 
Kibana webinar (1)
byDaliya Spasova
 

Recently uploaded

PDF
Types of eggs and Egg membranes (Developmental Zoology)
bySudhandraKarthi
 
PDF
Analyzing the data of your initial survey
byThelma Villaflores
 
PPTX
AN EXTREMELY BORING GENERAL QUIZ FOR UG.pptx
bySriramG47
 
PPTX
10-12-2025 Francois Staring How can Researchers and Initial Teacher Educators...
byEduSkills OECD
 
PDF
IMANI Africa files RTI request seeking full disclosure on 2026 SIM registrati...
bynservice241
 
PPTX
How to Manage Package Reservation in Odoo 18 Inventory
byCeline George
 
PDF
DHA/HAAD/MOH/DOH OPTOMETRY MCQ PYQ. .pdf
byAnmol Singh
 
PPTX
Semester 6 Unit 2 Club foot (talipes).pptx
bysachin7989
 
PPTX
PURPOSIVE SAMPLING IN EDUCATIONAL RESEARCH RACHITHRA RK.pptx
byssuser047b711
 
PPTX
Expected Revenue Report In Odoo 18 CRM
byCeline George
 
PPTX
How to Create Lead_Opportunity From Odoo 18 Website
byCeline George
 
PPTX
Introduction-to-Anatomy-and-Physiology.pptx
byAshish Umale
 
PDF
Blood Group Incompatibility: Rh Factor and Erythroblastosis Fetalis
bySudhandraKarthi
 
PDF
M.Sc. Nonchordates Complete Syllabus PPT | All Important Topics Covered
byKNIPSS SULTANPUR
 
PDF
Risk management in Moroccan public hospitals_ a literature review
byMan_Ebook
 
PPTX
Steve Hale - Developing Elite Young Goalkeepers 2024.pptx
bypjmfd
 
PDF
Cultivating Greatness Pune's Best Preschools and Schools.pdf
byWellington College
 
PPTX
Growth & Development MILESTONES (ADOLESCENTS ).pptx
byAneetaSharma15
 
PPTX
REVISED DEFENSE MECHANISM / ADJUSTMENT MECHANISM-FINAL
byShimla
 
PPTX
Partial Correlation of Coefficient - Values of r₁₂.₃, r₂₃.₁ & r₁₃.₂
bySundar B N
 
Types of eggs and Egg membranes (Developmental Zoology)
bySudhandraKarthi
 
Analyzing the data of your initial survey
byThelma Villaflores
 
AN EXTREMELY BORING GENERAL QUIZ FOR UG.pptx
bySriramG47
 
10-12-2025 Francois Staring How can Researchers and Initial Teacher Educators...
byEduSkills OECD
 
IMANI Africa files RTI request seeking full disclosure on 2026 SIM registrati...
bynservice241
 
How to Manage Package Reservation in Odoo 18 Inventory
byCeline George
 
DHA/HAAD/MOH/DOH OPTOMETRY MCQ PYQ. .pdf
byAnmol Singh
 
Semester 6 Unit 2 Club foot (talipes).pptx
bysachin7989
 
PURPOSIVE SAMPLING IN EDUCATIONAL RESEARCH RACHITHRA RK.pptx
byssuser047b711
 
Expected Revenue Report In Odoo 18 CRM
byCeline George
 
How to Create Lead_Opportunity From Odoo 18 Website
byCeline George
 
Introduction-to-Anatomy-and-Physiology.pptx
byAshish Umale
 
Blood Group Incompatibility: Rh Factor and Erythroblastosis Fetalis
bySudhandraKarthi
 
M.Sc. Nonchordates Complete Syllabus PPT | All Important Topics Covered
byKNIPSS SULTANPUR
 
Risk management in Moroccan public hospitals_ a literature review
byMan_Ebook
 
Steve Hale - Developing Elite Young Goalkeepers 2024.pptx
bypjmfd
 
Cultivating Greatness Pune's Best Preschools and Schools.pdf
byWellington College
 
Growth & Development MILESTONES (ADOLESCENTS ).pptx
byAneetaSharma15
 
REVISED DEFENSE MECHANISM / ADJUSTMENT MECHANISM-FINAL
byShimla
 
Partial Correlation of Coefficient - Values of r₁₂.₃, r₂₃.₁ & r₁₃.₂
bySundar B N
 
In this document
Powered by AI

James Spiteri introduces Limitless XDR and Elastic Security, stating the date is September 2nd, 2021.

Overview of Elastic solutions including Enterprise Search, Security, Observability, and deployment options.

Chronological listing of Elastic Security versions from 2020 to 2021 with features like anti-ransomware, SIEM, and more.

Introduction of Limitless XDR combining SIEM and Endpoint Security, marking a milestone with Endgame acquisition.

Listing of key security components: SIEM, EDR, EPP, XDR, and others that enhance security infrastructure.

Definition of XDR: eXtended Detection and Response, highlighting its detection and response capabilities.

Explores scenarios to illustrate the necessity of XDR for improved visibility and security correlation.

Description of Limitless XDR's features enhancing security operations through analytics and automation.

Definitions of limitless visibility, data, value, and analysis provided by Elastic Security solutions.

Details on Elastic Security's prevention, detection, and response strategies, highlighting features of the Elastic Stack.

Introduction to a live demonstration showcasing Elastic Security capabilities.

Thank you note and reference to the Elastic Security website for more information.

Limitless xdr meetup

  • 1.
    Limitless XDR withElastic Security James Spiteri Principal PMM  Elastic Security September 2nd, 2021
  • 2.
    Open to all ElasticEnterprise Search Elastic Security Elastic Observability Kibana Elasticsearch Beats Logstash Elastic Cloud Elastic Cloud on Kubernetes Elastic Cloud Enterprise Self-Managed Elastic Stack
  • 3.
    Today 2020 Anti-ransomware in Agent 7.12 2021 7.10 Correlation with EQL 7.6 SIEMgoes GA 7.8 Workflow connectors & prebuilt detections Endgame integration 7.5 SIEM app introduced EPP/XDR goes GA 7.14 Case management 7.7 Anti-malware in Agent 7.9 Searchable Snapshots 7.11 Endgame acquired Threat intelligence 7.13
  • 4.
    We’ve met ournext major milestone in our vision for joining forces with Endgame: Elastic introduces the first free and open, Limitless XDR  unifying SIEM and Endpoint Security for analysts everywhere.
  • 5.
  • 6.
    X is foreXtended D is for Detection R is for Response
  • 7.
    Why do weneed XDR? “We noticed this network activity from our endpoint events, did we see anything on our firewalls?” “This user is downloading files from s3 onto their desktop, can we view the s3 events?”
  • 8.
    Limitless XDR XDR modernizessecurity operations, enabling analytics across all data, automating key processes, and bringing native endpoint security to every host. SIEM Endpoint Security ...
  • 9.
    What is “Limitless”? Limitlessvisibility Hundreds of one-click integrations, a community of extensions, and simple custom ingestion with a single Agent Limitless data Action frozen storage data, like S3, for years of search, threat intelligence, dashboards, reports, and more Limitless value Elastic Security is all inclusive, with no price per seat, agent, GB ingested, etc. Deploy anywhere on any cloud or on prem (or both) Limitless analysis Search, correlate, look for outliers with machine learning, finding threat intelligence, aggregate results, prioritize, and investigate across multi-cloud environments
  • 10.
    Elastic Security Pre-execution prevention ❏Malware prevention ❏ Ransomware prevention Post-execution prevention ❏ Behavioral ransomware Prevention Collect Continuous visibility ❏ Kernel-level data collection ❏ Tailored host data collection ❏ Ad-hoc host analysis via osquery Prevent Elastic Agent ❏ Alert triage and hunting workflows ❏ Insights, context, and recommendations ❏ Threat intel. integrations ❏ Prebuilt detections: use cases, rules, ML models ❏ Advanced analytics, interactive visualizations, root-cause analysis ❏ Fast and scalable search platform, open data schema, on-prem to multi-cloud Detect Elastic Stack ❏ Investigation & response workflows ❏ External alert actions: email, Slack, SOAR & ITSM platforms ❏ External case connectors: IBM, JIRA, ServiceNow, Swimlane ❏ Simple custom connections Respond Elastic Stack ❏ On-demand osquery inspection ❏ Remote host isolation Elastic Agent
  • 11.
  • 12.