Description

This project features an ELK (Elasticsearch, Logstash, Kibana) stack hosted on a virtual machine within my homelab environment. It is integrated with the pfSense firewall to collect, parse, and visualize network logs in real time. Logstash was configured to ingest firewall logs via syslog, while Kibana dashboards provide insights into traffic patterns, port scans, and potential threats. This setup enhances network visibility and simulates a SIEM-like environment for practicing log analysis and threat hunting.