Browse Library
Sign In Start Free Trial
Close icon Search icon
Account
Browse Library Sign In Start Free Trial

Add to playlist

Create a Playlist

Modal Close icon
You need to login to use this feature.
  • Book Overview & Buying Machine Learning with the Elastic Stack
  • Table Of Contents Toc
Machine Learning with the Elastic Stack

Machine Learning with the Elastic Stack

By : Rich Collier, Bahaaldine Azarmi
4.8 (5)
Buy this Book
close
close
Machine Learning with the Elastic Stack

Machine Learning with the Elastic Stack

4.8 (5)
By: Rich Collier, Bahaaldine Azarmi
Buy this Book

Overview of this book

Machine Learning with the Elastic Stack is a comprehensive overview of the embedded commercial features of anomaly detection and forecasting. The book starts with installing and setting up Elastic Stack. You will perform time series analysis on varied kinds of data, such as log files, network flows, application metrics, and financial data. As you progress through the chapters, you will deploy machine learning within the Elastic Stack for logging, security, and metrics. In the concluding chapters, you will see how machine learning jobs can be automatically distributed and managed across the Elasticsearch cluster and made resilient to failure. By the end of this book, you will understand the performance aspects of incorporating machine learning within the Elastic ecosystem and create anomaly detection jobs and view results from Kibana directly.
Table of Contents (12 chapters)
close
close
close
Preface
Icon
Preface
Icon
Who this book is for
Icon
What this book covers
Icon
To get the most out of this book
Icon
Get in touch
Lock Free Chapter
1
Machine Learning for IT
Icon
Machine Learning for IT
Icon
Overcoming the historical challenges
Icon
Theory of operation
Icon
Operationalization
Icon
Supporting indices
Icon
The orchestration
Icon
Summary
2
Installing the Elastic Stack with Machine Learning
Icon
Installing the Elastic Stack with Machine Learning
Icon
Installing the Elastic Stack
Icon
A guided tour of Elastic ML features
Icon
Summary
3
Event Change Detection
chevron up
Icon
Event Change Detection
Icon
How to understand the normal rate of occurrence
Icon
Exploring count functions
Icon
Counting in population analysis
Icon
Detecting things that rarely occur
Icon
Counting message-based logs via categorization
Icon
Summary
4
IT Operational Analytics and Root Cause Analysis
Icon
IT Operational Analytics and Root Cause Analysis
Icon
Holistic application visibility
Icon
Data organization
Icon
Bringing it all together for root cause analysis
Icon
Summary
5
Security Analytics with Elastic Machine Learning
Icon
Security Analytics with Elastic Machine Learning
Icon
Security in the field
Icon
Threat hunting architecture
Icon
Investigation analytics
Icon
Summary
6
Alerting on ML Analysis
Icon
Alerting on ML Analysis
Icon
Results presentation
Icon
The results index
Icon
Alerts from the Machine Learning UI in Kibana
Icon
Creating ML alerts manually
Icon
Summary
7
Using Elastic ML Data in Kibana Dashboards
Icon
Using Elastic ML Data in Kibana Dashboards
Icon
Visualization options in Kibana
Icon
Preparing data for anomaly detection analysis
Icon
Building the visualizations
Icon
Summary
8
Using Elastic ML with Kibana Canvas
Icon
Using Elastic ML with Kibana Canvas
Icon
Introduction to Canvas
Icon
Building Elastic ML Canvas slides
Icon
Summary
9
Forecasting
Icon
Forecasting
Icon
Forecasting versus prophesying
Icon
Forecasting use cases
Icon
Forecasting – theory of operation
Icon
Single time series forecasting
Icon
Forecast results
Icon
Multiple time series forecasting
Icon
Summary
10
ML Tips and Tricks
Icon
ML Tips and Tricks
Icon
Job groups
Icon
Influencers in split versus non-split jobs
Icon
Using ML on scripted fields
Icon
Using one-sided ML functions to your advantage
Icon
Ignoring time periods
Icon
Don't over-engineer the use case
Icon
ML job throughput considerations
Icon
Top-down alerting by leveraging custom rules
Icon
Sizing ML deployments
Icon
Summary
11
Other Books You May Enjoy
Icon
Other Books You May Enjoy
Icon
Leave a review - let other readers know what you think

Event Change Detection

As shown in the previous chapter, Chapter 2, Installing the Elastic Stack with Machine Learning, tracking metrics and their potential abnormalities over time is certainly an extremely important application of anomaly detection to IT data. This affords a broad, proactive coverage of many key indicators of performance and availability.

However, there are many important use cases that revolve around the idea of event change detection. These include the following:

  • Discovering a flood of error messages suddenly cropping up in a log file
  • Detecting a sudden drop in the amount of orders processed by an online system
  • Determining a sudden excessive number of attempts at accessing something (for example, brute-force authentication or reconnaissance scanning)

In this chapter, we'll discuss the concepts of determining anomalies based on the occurrence rates of...

CONTINUE READING
83
Tech Concepts
36
Programming languages
73
Tech Tools
Icon Unlimited access to the largest independent learning library in tech of over 8,000 expert-authored tech books and videos.
Icon Innovative learning tools, including AI book assistants, code context explainers, and text-to-speech.
Icon 50+ new titles added per month and exclusive early access to books as they are being written.
Machine Learning with the Elastic Stack
End of Section 3
Next Section
notes
bookmark Notes and Bookmarks search Search in title playlist Add to playlist download Download options
font-size Font size

Change the font size

margin-width Margin width

Change margin width

day-mode Day/Sepia/Night Modes

Change background colour

Close icon Search
Country selected
Close icon Your notes and bookmarks

Confirmation

Modal Close icon
claim successful
Order Page Read Now

Buy this book with your credits?

Modal Close icon
Are you sure you want to buy this book with one of your credits?
Close
YES, BUY

Submit Your Feedback

Modal Close icon
Modal Close icon
Modal Close icon