Flowtriq for
Elastic / Kibana
Ingest DDoS incidents into Elasticsearch with ECS-mapped fields and pre-built Kibana dashboards. Real-time attack visibility, ingest pipelines, and seamless integration with Elastic Security.
Setup
Connect in three steps
Capabilities
DDoS intelligence in Elastic
ECS Field Mapping
All Flowtriq incident fields map to Elastic Common Schema (ECS). Source IPs, destination IPs, network bytes, event categories, and threat indicators follow standard ECS naming for cross-tool compatibility.
Ingest Pipeline
A pre-built ingest pipeline transforms raw Flowtriq events into ECS-compliant documents on indexing. No Logstash required. The pipeline handles field renaming, enrichment, and geo-IP lookups.
5-Panel Kibana Dashboard
The pre-built dashboard includes panels for active incidents, attack family distribution, severity timeline, top targeted IPs, and mitigation action breakdown. Clone and customize as needed.
Webhook or Direct Export
Send incidents to Elasticsearch via webhook from the Flowtriq dashboard, or configure direct API export for high-volume environments. Both methods deliver real-time data with identical field mappings.
Bring DDoS visibility into Elastic
Set up the integration and start receiving incident data in your Kibana dashboards within minutes.
FAQ