CINXE.COM
Elastic Security overview | Elastic Security Solution [8.16] | Elastic
<!DOCTYPE html> <html lang="en-us"> <head> <meta charset="UTF-8"> <title>Elastic Security overview | Elastic Security Solution [8.16] | Elastic</title> <meta class="elastic" name="content" content="Elastic Security overview | Elastic Security Solution [8.16]"> <link rel="home" href="index.html" title="Elastic Security Solution [8.16]"/> <link rel="up" href="index.html" title="Elastic Security Solution [8.16]"/> <link rel="prev" href="index.html" title="Elastic Security Solution [8.16]"/> <link rel="next" href="whats-new.html" title="What’s new in 8.16"/> <meta class="elastic" name="product_version" content="8.16"/> <meta class="elastic" name="product_name" content="Security"/> <meta class="elastic" name="website_area" content="documentation"/> <meta name="DC.type" content="Learn/Docs/Security/Guide/8.16"/> <meta name="DC.subject" content="Security"/> <meta name="DC.identifier" content="8.16"/> <meta http-equiv="content-type" content="text/html; charset=utf-8" /> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="viewport" content="width=device-width, initial-scale=1"> <script src="https://cdn.optimizely.com/js/18132920325.js"></script> <link rel="apple-touch-icon" sizes="57x57" href="/apple-icon-57x57.png"> <link rel="apple-touch-icon" sizes="60x60" href="/apple-icon-60x60.png"> <link rel="apple-touch-icon" sizes="72x72" href="/apple-icon-72x72.png"> <link rel="apple-touch-icon" sizes="76x76" href="/apple-icon-76x76.png"> <link rel="apple-touch-icon" sizes="114x114" href="/apple-icon-114x114.png"> <link rel="apple-touch-icon" sizes="120x120" href="/apple-icon-120x120.png"> <link rel="apple-touch-icon" sizes="144x144" href="/apple-icon-144x144.png"> <link rel="apple-touch-icon" sizes="152x152" href="/apple-icon-152x152.png"> <link rel="apple-touch-icon" sizes="180x180" href="/apple-icon-180x180.png"> <link rel="icon" type="image/png" href="/favicon-32x32.png" sizes="32x32"> <link rel="icon" type="image/png" href="/android-chrome-192x192.png" sizes="192x192"> <link rel="icon" type="image/png" href="/favicon-96x96.png" sizes="96x96"> <link rel="icon" type="image/png" href="/favicon-16x16.png" sizes="16x16"> <link rel="manifest" href="/manifest.json"> <meta name="apple-mobile-web-app-title" content="Elastic"> <meta name="application-name" content="Elastic"> <meta name="msapplication-TileColor" content="#ffffff"> <meta name="msapplication-TileImage" content="/mstile-144x144.png"> <meta name="theme-color" content="#ffffff"> <meta name="naver-site-verification" content="936882c1853b701b3cef3721758d80535413dbfd" /> <meta name="yandex-verification" content="d8a47e95d0972434" /> <meta name="localized" content="true" /> <meta name="st:robots" content="follow,index" /> <meta property="og:image" content="https://static-www.elastic.co/v3/assets/bltefdd0b53724fa2ce/blt280217a63b82a734/6202d3378b1f312528798412/elastic-logo.svg" /> <meta property="og:image:width" content="500" /> <meta property="og:image:height" content="172" /> <link rel="shortcut icon" href="/favicon.ico" type="image/x-icon"> <link rel="icon" href="/favicon.ico" type="image/x-icon"> <link rel="apple-touch-icon-precomposed" sizes="64x64" href="/favicon_64x64_16bit.png"> <link rel="apple-touch-icon-precomposed" sizes="32x32" href="/favicon_32x32.png"> <link rel="apple-touch-icon-precomposed" sizes="16x16" href="/favicon_16x16.png"> <!-- Give IE8 a fighting chance --> <!--[if lt IE 9]> <script src="https://oss.maxcdn.com/html5shiv/3.7.2/html5shiv.min.js"></script> <script src="https://oss.maxcdn.com/respond/1.4.2/respond.min.js"></script> <![endif]--> <link rel="stylesheet" type="text/css" href="/guide/static/styles-v1.css" /> </head> <!--© 2015-2025 Elasticsearch B.V. --> <!-- All Elastic documentation is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License. --> <!-- http://creativecommons.org/licenses/by-nc-nd/4.0/ --> <body> <!-- Google Tag Manager --> <script>dataLayer = [];</script><noscript><iframe src="//www.googletagmanager.com/ns.html?id=GTM-58RLH5" height="0" width="0" style="display:none;visibility:hidden"></iframe></noscript> <script>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start': new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0], j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src= '//www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f); })(window,document,'script','dataLayer','GTM-58RLH5');</script> <!-- End Google Tag Manager --> <!-- Global site tag (gtag.js) - Google Analytics --> <script async src="https://www.googletagmanager.com/gtag/js?id=UA-12395217-16"></script> <script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'UA-12395217-16'); </script> <!-- Google Tag Manager for GA4 --> <script>(function(w,d,s,l,i){w[l]=w[l]||[];w[l].push({'gtm.start': new Date().getTime(),event:'gtm.js'});var f=d.getElementsByTagName(s)[0], j=d.createElement(s),dl=l!='dataLayer'?'&l='+l:'';j.async=true;j.src='https://www.googletagmanager.com/gtm.js?id='+i+dl;f.parentNode.insertBefore(j,f);})(window,document,'script','dataLayer','GTM-KNJMG2M');</script> <noscript><iframe src="https://www.googletagmanager.com/ns.html?id=GTM-KNJMG2M" height="0" width="0" style="display:none;visibility:hidden"></iframe></noscript> <!-- End Google Tag Manager for GA4--> <div id='elastic-nav' style="display:none;"></div> <script src='https://www.elastic.co/elastic-nav.js'></script> <div class="main-container"> <section id="content" > <div class="content-wrapper"> <section id="guide" lang="en"> <div class="container-fluid"> <div class="row pb-3"> <div class="col-12 order-2 col-md-4 order-md-1 col-lg-3 h-almost-full-md sticky-top-md" id="left_col"> <!-- The TOC is appended here --> </div> <div class="col-12 order-1 col-md-8 order-md-2 col-lg-7 order-lg-2 guide-section" id="middle_col"> <!-- start body --> <div class="navheader"> <span class="prev"> </span> <span class="next"> <a href="whats-new.html">What’s new in 8.16 »</a> </span> </div> <div class="book" lang="en"> <div class="titlepage"> <div class="breadcrumbs"> <span class="breadcrumb-link"><a href="/guide/">Elastic Docs</a></span> <span class="chevron-right">›</span><span class="breadcrumb-link"><a href="index.html">Elastic Security Solution [8.16]</a></span> </div> <div> <div><h1 class="title"><a id="id-1"></a>Elastic Security overview</h1><a class="edit_me" rel="nofollow" title="Edit this page on GitHub" href="https://github.com/elastic/security-docs/edit/8.16/docs/es-overview.asciidoc">edit</a></div> </div> <!--EXTRA--> </div> <div id="content"> <div class="chapter xpack"> <div class="titlepage"><div><div> <div class="position-relative"><h2 class="title"><a id="es-overview"></a>Elastic Security overview</h2><a class="edit_me" rel="nofollow" title="Edit this page on GitHub" href="https://github.com/elastic/security-docs/edit/8.16/docs/es-overview.asciidoc">edit</a></div> </div></div></div> <p>Elastic Security combines threat detection analytics, cloud native security, and endpoint protection capabilities in a single solution, so you can quickly detect, investigate, and respond to threats and vulnerabilities across your environment.</p> <p>Elastic Security provides:</p> <div class="ulist itemizedlist"> <ul class="itemizedlist"> <li class="listitem"> A detection engine that identifies a wide range of threats </li> <li class="listitem"> A workspace for event triage, investigation, and case management </li> <li class="listitem"> Interactive data visualization tools </li> <li class="listitem"> Integrations for collecting data from various sources </li> </ul> </div> <div class="position-relative"><h3><a id="siem-integration"></a>Learn more</h3><a class="edit_me" rel="nofollow" title="Edit this page on GitHub" href="https://github.com/elastic/security-docs/edit/8.16/docs/es-overview.asciidoc">edit</a></div> <div class="ulist itemizedlist"> <ul class="itemizedlist"> <li class="listitem"> <a class="xref" href="getting-started.html" title="Get started with Elastic Security">Get started</a>: Learn about system requirements, workspaces, configuration, and data ingestion. </li> <li class="listitem"> <a class="xref" href="es-ui-overview.html" title="Elastic Security UI">Elastic Security UI overview</a>: Navigate Elastic Security’s various tools and interfaces. </li> <li class="listitem"> <a class="xref" href="about-rules.html" title="About detection rules">Detection rules</a>: Use Elastic Security’s detection engine with custom and prebuilt rules. </li> <li class="listitem"> <a class="xref" href="cloud-native-security-overview.html" title="Cloud Security">Cloud security</a>: Enable cloud native security capabilities such as Cloud and Kubernetes security posture management, cloud native vulnerability management, and cloud workload protection for Kubernetes and VMs. </li> <li class="listitem"> <a class="xref" href="install-endpoint.html" title="Install the Elastic Defend integration">Install Elastic Defend</a>: Enable key endpoint protection capabilities like event collection and malicious activity prevention. </li> <li class="listitem"> <a href="/products/stack/machine-learning" class="ulink" target="_top">Machine learning</a>: Enable built-in machine learning tools to help you identify malicious behavior. </li> <li class="listitem"> <a class="xref" href="advanced-entity-analytics-overview.html" title="Advanced Entity Analytics">Advanced entity analytics</a>: Leverage Elastic Security’s detection engine and machine learning capabilities to generate comprehensive risk analytics for hosts and users. </li> <li class="listitem"> <a class="xref" href="security-assistant.html" title="AI Assistant">Elastic AI assistant</a>: Ask AI Assistant questions about how to use Elastic Security, how to understand particular alerts and other documents, and how to write ES|QL queries. </li> <li class="listitem"> <a class="xref" href="security-ref-intro.html" title="Elastic Security fields and object schemas">Elastic Security fields and object schemas</a>: Learn how to structure data for use with Elastic Security. </li> </ul> </div> <div class="position-relative"><h3><a id="elastic-search-and-kibana"></a>Elasticsearch and Kibana</h3><a class="edit_me" rel="nofollow" title="Edit this page on GitHub" href="https://github.com/elastic/security-docs/edit/8.16/docs/es-overview.asciidoc">edit</a></div> <p>Elastic Security uses Elasticsearch for data storage, management, and search, and Kibana is its main user interface. Learn more:</p> <div class="ulist itemizedlist"> <ul class="itemizedlist"> <li class="listitem"> <a href="/products/elasticsearch" class="ulink" target="_top">Elasticsearch</a>: A real-time, distributed storage, search, and analytics engine. Elastic Security stores your data using Elasticsearch. </li> <li class="listitem"> <a href="/products/kibana" class="ulink" target="_top">Kibana</a>: An open-source analytics and visualization platform designed to work with Elasticsearch and Elastic Security. Kibana allows you to search, view, analyze and visualize data stored in Elasticsearch indices. </li> </ul> </div> <div class="position-relative"><h4><a id="self-protection"></a>Elastic Endpoint self-protection</h4><a class="edit_me" rel="nofollow" title="Edit this page on GitHub" href="https://github.com/elastic/security-docs/edit/8.16/docs/es-overview.asciidoc">edit</a></div> <p>For information about Elastic Endpoint’s tamper-protection features, refer to <a class="xref" href="endpoint-self-protection.html" title="Elastic Endpoint self-protection features">Elastic Endpoint self-protection</a>.</p> </div> </div> </div><div class="navfooter"> <span class="prev"> </span> <span class="next"> <a href="whats-new.html">What’s new in 8.16 »</a> </span> </div> <!-- end body --> </div> <div class="col-12 order-3 col-lg-2 order-lg-3 h-almost-full-lg sticky-top-lg" id="right_col"> <div id="sticky_content"> <!-- The OTP is appended here --> <div class="row"> <div class="col-0 col-md-4 col-lg-0" id="bottom_left_col"></div> <div class="col-12 col-md-8 col-lg-12"> <div id="rtpcontainer"> <div class="mktg-promo" id="most-popular"> <p class="aside-heading">Most Popular</p> <div class="pb-2"> <p class="media-type">Video</p> <a href="https://www.elastic.co/webinars/getting-started-elasticsearch?page=docs&placement=top-video"> <p class="mb-0">Get Started with Elasticsearch</p> </a> </div> <div class="pb-2"> <p class="media-type">Video</p> <a href="https://www.elastic.co/webinars/getting-started-kibana?page=docs&placement=top-video"> <p class="mb-0">Intro to Kibana</p> </a> </div> <div class="pb-2"> <p class="media-type">Video</p> <a href="https://www.elastic.co/webinars/introduction-elk-stack?page=docs&placement=top-video"> <p class="mb-0">ELK for Logs & Metrics</p> </a> </div> </div> </div> <!-- Feedback widget --> <div id="feedbackWidgetContainer"></div> </div> </div> </div> </div> </div> </div> </section> </div> <div id='elastic-footer'></div> <script src='https://www.elastic.co/elastic-footer.js'></script> <!-- Footer Section end--> </section> </div> <!-- Feedback modal --> <div id="feedbackModalContainer"></div> <script src="/guide/static/jquery.js"></script> <script type="text/javascript" src="/guide/static/docs-v1.js"></script> <script type="text/javascript"> window.initial_state = {}</script> </body> </html>