Difference between revisions of "KHIKA User Guide"
Jump to navigation
Jump to search
| Line 1: | Line 1: | ||
== Index == | == Index == | ||
| − | + | ||
[[Accessing the KHIKA Gui]] | [[Accessing the KHIKA Gui]] | ||
| − | |||
:[[Accessing the KHIKA Gui#Login|Login]] | :[[Accessing the KHIKA Gui#Login|Login]] | ||
:[[Accessing the KHIKA Gui#Change the password|Change the password]] | :[[Accessing the KHIKA Gui#Change the password|Change the password]] | ||
| Line 10: | Line 9: | ||
:[[Accessing the KHIKA Gui#Access Control in KHIKA|Access Control in KHIKA]] | :[[Accessing the KHIKA Gui#Access Control in KHIKA|Access Control in KHIKA]] | ||
| − | |||
[[Getting Data into KHIKA]] | [[Getting Data into KHIKA]] | ||
| − | |||
:[[Getting Data into KHIKA#Introduction|Introduction]] | :[[Getting Data into KHIKA#Introduction|Introduction]] | ||
:[[Getting Data into KHIKA#Data Flow and Components in KHIKA|Data Flow and Components in KHIKA]] | :[[Getting Data into KHIKA#Data Flow and Components in KHIKA|Data Flow and Components in KHIKA]] | ||
| Line 31: | Line 28: | ||
:[[Getting Data into KHIKA#Monitoring in KHIKA using Syslog forwarding|Monitoring in KHIKA using Syslog forwarding]] | :[[Getting Data into KHIKA#Monitoring in KHIKA using Syslog forwarding|Monitoring in KHIKA using Syslog forwarding]] | ||
| − | |||
[[Discover or Search Data in KHIKA]] | [[Discover or Search Data in KHIKA]] | ||
| − | |||
:[[Discover or Search Data in KHIKA#Introduction|Introduction]] | :[[Discover or Search Data in KHIKA#Introduction|Introduction]] | ||
:[[Discover or Search Data in KHIKA#Index Pattern|Index Pattern]] | :[[Discover or Search Data in KHIKA#Index Pattern|Index Pattern]] | ||
| Line 46: | Line 41: | ||
:[[Discover or Search Data in KHIKA#Viewing Document Data|Viewing Document Data]] | :[[Discover or Search Data in KHIKA#Viewing Document Data|Viewing Document Data]] | ||
| − | |||
[[KHIKA Visualizations]] | [[KHIKA Visualizations]] | ||
:[[KHIKA Visualizations#What is a KHIKA Visualization?|What is a KHIKA Visualization?]] | :[[KHIKA Visualizations#What is a KHIKA Visualization?|What is a KHIKA Visualization?]] | ||
| Line 61: | Line 55: | ||
::[[KHIKA Visualizations#Metric|Metric]] | ::[[KHIKA Visualizations#Metric|Metric]] | ||
| − | |||
[[KHIKA Dashboards]] | [[KHIKA Dashboards]] | ||
:[[KHIKA Dashboards#Introduction|Introduction]] | :[[KHIKA Dashboards#Introduction|Introduction]] | ||
| Line 71: | Line 64: | ||
::[[KHIKA Dashboards#Steps to Search and Save on a Dashboard|Steps to Search and Save on a Dashboard]] | ::[[KHIKA Dashboards#Steps to Search and Save on a Dashboard|Steps to Search and Save on a Dashboard]] | ||
| − | |||
[[KHIKA Reports]] | [[KHIKA Reports]] | ||
:[[KHIKA Reports#Introduction|Introduction]] | :[[KHIKA Reports#Introduction|Introduction]] | ||
| Line 80: | Line 72: | ||
:[[KHIKA Reports#Downloading a Report|Downloading a Report]] | :[[KHIKA Reports#Downloading a Report|Downloading a Report]] | ||
| − | |||
[[KHIKA Alerts & Correlations]] | [[KHIKA Alerts & Correlations]] | ||
:[[KHIKA Alerts & Correlations#Introduction|Introduction]] | :[[KHIKA Alerts & Correlations#Introduction|Introduction]] | ||
| Line 92: | Line 83: | ||
:[[KHIKA Alerts & Correlations#Alert emails for Stakeholders|Alert emails for Stakeholders]] | :[[KHIKA Alerts & Correlations#Alert emails for Stakeholders|Alert emails for Stakeholders]] | ||
| − | |||
[[Working with KHIKA Adapters]] | [[Working with KHIKA Adapters]] | ||
:[[Working with KHIKA Adapters#Introduction|Introduction]] | :[[Working with KHIKA Adapters#Introduction|Introduction]] | ||
| Line 103: | Line 93: | ||
:[[Write Your Own Adapter|Writing your own Adaptor]] | :[[Write Your Own Adapter|Writing your own Adaptor]] | ||
| − | |||
[[Working with KHIKA Aggregators]] | [[Working with KHIKA Aggregators]] | ||
:[[Working with KHIKA Aggregators#Introduction|Introduction]] | :[[Working with KHIKA Aggregators#Introduction|Introduction]] | ||
| Line 113: | Line 102: | ||
:[[Working with KHIKA Aggregators#Disabling Adapter to Data Aggregator|Disabling Adapter to Data Aggregator]] | :[[Working with KHIKA Aggregators#Disabling Adapter to Data Aggregator|Disabling Adapter to Data Aggregator]] | ||
| − | |||
[[KHIKA Workspaces]] | [[KHIKA Workspaces]] | ||
:[[KHIKA Workspaces#Introduction|Introduction]] | :[[KHIKA Workspaces#Introduction|Introduction]] | ||
| Line 126: | Line 114: | ||
:[[KHIKA Workspaces#Deleting a Workspace|Deleting a Workspace]] | :[[KHIKA Workspaces#Deleting a Workspace|Deleting a Workspace]] | ||
| − | |||
[[Data Enrichment in KHIKA]] | [[Data Enrichment in KHIKA]] | ||
:[[Data Enrichment in KHIKA#About Enrichment|About Enrichment]] | :[[Data Enrichment in KHIKA#About Enrichment|About Enrichment]] | ||
| Line 132: | Line 119: | ||
:[[Define your own enrichment]] | :[[Define your own enrichment]] | ||
| − | |||
[[Hardening Monitoring & Analysis]] | [[Hardening Monitoring & Analysis]] | ||
:[[Hardening Monitoring & Analysis#Introduction|Introduction]] | :[[Hardening Monitoring & Analysis#Introduction|Introduction]] | ||
| Line 138: | Line 124: | ||
:[[Hardening Monitoring & Analysis#Hardening Dashboard|Hardening Dashboard]] | :[[Hardening Monitoring & Analysis#Hardening Dashboard|Hardening Dashboard]] | ||
| − | |||
[[Data Archival in KHIKA]] | [[Data Archival in KHIKA]] | ||
:[[Data Archival in KHIKA#Overview|Overview]] | :[[Data Archival in KHIKA#Overview|Overview]] | ||
| Line 147: | Line 132: | ||
:[[Data Archival in KHIKA#View Data Archival Status|View Data Archival Status]] | :[[Data Archival in KHIKA#View Data Archival Status|View Data Archival Status]] | ||
| − | |||
[[File Integrity Monitoring]] | [[File Integrity Monitoring]] | ||
| − | |||
[[Start and Stop KHIKA]] | [[Start and Stop KHIKA]] | ||
:[[Start and Stop KHIKA#Overview|Overview]] | :[[Start and Stop KHIKA#Overview|Overview]] | ||
| Line 156: | Line 139: | ||
:[[Start and Stop KHIKA#Application Server Start and Stop|Application Server Start and Stop]] | :[[Start and Stop KHIKA#Application Server Start and Stop|Application Server Start and Stop]] | ||
| − | |||
[[About OSSEC]] | [[About OSSEC]] | ||
:[[About OSSEC#Overview|Overview]] | :[[About OSSEC#Overview|Overview]] | ||
| Line 162: | Line 144: | ||
:[[About OSSEC#Why Khika integrates closely with OSSEC?|Why Khika integrates closely with OSSEC?]] | :[[About OSSEC#Why Khika integrates closely with OSSEC?|Why Khika integrates closely with OSSEC?]] | ||
| − | |||
[[FAQs]] | [[FAQs]] | ||
| − | |||
<br/><br/> | <br/><br/> | ||
Refer the next section for [[Accessing the KHIKA Gui]] | Refer the next section for [[Accessing the KHIKA Gui]] | ||
Revision as of 12:32, 17 June 2019
Index
- Login
- Change the password
- Creating a User Group
- Creating a Workspace
- Creating a new User
- Access Control in KHIKA
- Introduction
- Data Flow and Components in KHIKA
- KHIKA Apps
- Importing an Application
- Exporting an Application
- Server monitoring in KHIKA using OSSEC
- Installing OSSEC Agent for Linux
- Installing OSSEC Agent for Windows
- Configuring OSSEC Adapter in KHIKA
- Adding the device in the Adaptor
- Extract key from KHIKA OSSEC Server
- Insert unique OSSEC key in Linux OSSEC Agent
- Insert unique OSSEC key in Windows OSSEC Agent
- Reload Configuration
- Verifying OSSEC data collection
- Troubleshooting
- Monitoring in KHIKA using Syslog forwarding
Discover or Search Data in KHIKA
- Introduction
- Index Pattern
- Setting the Time Filter
- Searching Your Data
- Lucene Query Syntax
- Saving and Opening Searches
- Changing the Index
- Refreshing the Search Results
- Filtering by Field
- Managing Filters
- Viewing Document Data
- Introduction
- Creating a Dashboard
- Editing Elements on a Dashboard
- Viewing Visualization data on Dashboard
- Searching / Filtering data on the dashboard
- Introduction
- Adding a Report
- Scheduling Reports
- Generating KHIKA Report Manually
- Report History
- Downloading a Report
- Introduction
- Adding Adapters
- Searching Adapters
- Assigning Data Aggregator Node to Adapters
- Disabling Data Aggregator to Adapters
- Modifying Adapters
- Deleting Adapters
- Writing your own Adaptor
Working with KHIKA Aggregators
- Introduction
- Adding New Data Aggregator
- Assigning Data Aggregator Node to Workspace
- Deleting Data Aggregator Node
- Deleting Data Aggregator from Workspace
- Assign Adapter to Data Aggregator
- Disabling Adapter to Data Aggregator
- Introduction
- Adding a Workspace
- Suspending a Workspace
- Resetting a Workspace
- Applying Configuration to Workspace
- Archiving a Workspace
- Adding Data Aggregator to a Workspace
- Adding Adapter to a Workspace
- Defining and Configuring a Report
- Deleting a Workspace
Hardening Monitoring & Analysis
- Overview
- Data Archival Workflow
- For SaaS
- For On-Premise
- View Data Retention Settings
- View Data Archival Status
Refer the next section for Accessing the KHIKA Gui
