Gravwell is an enterprise data fusion platform that enables security teams to investigate, collaborate, and analyze data from any source, on demand, all with unlimited data collection and retention. Ingest everything. Investigate anything.
In this video, Kris will take you from installation of Gravwell to installing Zeek kit, then finally to automating a port scan alert using Gravwell Flows (new automation interface).
Quickstart Doc: docs.gravwell.io/#!quickstart/quickstart.md
Deploying Gravwell in Docker: docs.gravwell.io/#!configuration/docker.md