Skip to content

Latest commit

 

History

History
22 lines (19 loc) · 477 Bytes

elastalert-fields.rst

File metadata and controls

22 lines (19 loc) · 477 Bytes

Elastalert Fields

The following lists field names as they are formatted in Elasticsearch. Elastalert provides its own template to use for mapping into Elastalert, so we do not current utilize a config file to parse data from Elastalert.

index:*:elastalert_status

alert_info.type
alert_sent
alert_time
endtime
hist
matches
match_body.@timestamp
match_body.num_hits
match_body.num_matches
rule_name
starttime
time_taken