elastic TODO Add kibana index mapping for bro-* Add kibana search/vis/dashboards Add critical stack intel Add file extraction NOTES https://github.com/TravisFSmith/SweetSecurity https://github.com/505Forensics/tools/tree/master/logstash_dfir