Elastic Security is announcing the general availability (GA) of two of our most widely deployedgenerative artificial intelligence (GenAI)capabilities:Attack Discovery, launched in May, andAutomatic Import, launched in August. Elastic’s AI-driven security analytics are providing immense value to many organizations. Arecent value studyfrom Enterprise Strategy Group reports that one customer utilizing Attack Discovery distilled 1,018 alerts into 8 actionable discoveries.

In joining GA, Automatic Import and Attack Discovery pair with the AI Assistant for Security to bring security operations into the generative AI era. In addition to the powerful, natural language sidekick, organizations everywhere can streamline data ingestion and surface crucial patterns and insights.

“Building a security solution on the foundation of Search AI means that we get to share incredible capabilities that are the very best of what AI can offer security practitioners,” said James Spiteri, director of AI and advanced analytics for Elastic Security. “Both Automatic Import and Attack Discovery uplevel practitioners, but in addition to that efficiency they’re quickly valuable and easy to use. That low learning curve is a top priority for us as product managers, and I’m excited for even more customers to see that increase in visibility for themselves.”

Powerful AI for every SOC

Ease data onboarding with Automatic Import

The most advanced feature of its kind, Automatic Import builds and validates custom data integrations in just minutes. This capability saves practitioners hours of work, enabling teams to efficiently extend visibility across their attack surface.

Automatic Import for Elastic Security

Surface what’s important with Attack Discovery

Attack Discovery seamlessly transforms all of your SIEM’s alerts into a clear and actionable picture of advancing attacks, enabling teams to respond with exceptional precision and speed. This strengthens defenses, improves team efficiency, and lowers risk.

Attack Discovery in action

Together, Automatic Import and Attack Discovery greatly increase an organization’s visibility, reclaim hours for the team, and lower risk. These capabilities are powered by large language models (LLM) and supported by Elastic’s openness and transparency.

The power to use your LLM of choice

Security begins with data and ends with action. But how do you get from point A to point B — and _quickly_? For Elastic, it’s the use ofretrieval augmented generation(RAG) — a technology that grounds LLM prompts in organizational context to improve accuracy and relevance.The Elasticsearch Platformis uniquely suited to apply RAG to deliver actionable insights to security teams, and is the foundation of our AI capabilities.

Because Elastic’s capabilities are built upon RAG, Automatic Import and Attack Discovery will always pull accurate, timely context regardless of the LLM you have in place. Security teams can pick and choose the best LLM for them at the time of query, regardless of cost, speed, accuracy, or privacy.

Elastic Security connects natively with the most popular commercial LLMs, as well as any LLM that leverages the OpenAI SDK for their inference service. Some of the most performant models and integrations include:

Google Cloud’s Gemini 1.5 Pro 002 and Gemini Flash 1.5 002 models via the Google Cloud Vertex AI platform

Anthropic’s Claude family of models via Amazon Bedrock

The GPT-4 family of models via OpenAI or Azure’s OpenAI Service

You can see a recommended list of LLM options and their performancehere. If you want a deeper dive into how Elastic connects to and protects these LLMs, you can check out the Elastic Security Labs articleElastic Advances LLM Security with Standardized Fields and Integrations.

Try it for free

You can try Elastic Security’s powerful AI-driven security analytics entirely free of charge! Automatic Import and Attack Discovery will speed integration and identify unknown threat patterns for your organization on your LLM of choice. See what you can discover in two weeks, started in a snap with Elastic Cloud Serverless.

_The release and timing of any features or functionality described in this post remain at Elastic's sole discretion. Any features or functionality not currently available may not be delivered on time or at all._

_In this blog post, we may have used or referred to third party generative AI tools, which are owned and operated by their respective owners. Elastic does not have any control over the third party tools and we have no responsibility or liability for their content, operation or use, nor for any loss or damage that may arise from your use of such tools. Please exercise caution when using AI tools with personal, sensitive or confidential information. Any data you submit may be used for AI training or other purposes. There is no guarantee that information you provide will be kept secure or confidential. You should familiarize yourself with the privacy practices and terms of use of any generative AI tools prior to use._

_Elastic, Elasticsearch, ESRE, Elasticsearch Relevance Engine and associated marks are trademarks, logos or registered trademarks of Elasticsearch N.V. in the United States and other countries. All other company and product names are trademarks, logos or registered trademarks of their respective owners._

![Image 22: Twitter!Image 23: TwitterShare on Twitter](javascript:void(0))Share on Twitter
![Image 24: LinkedIn!Image 25: LinkedInShare on LinkedIn](javascript:void(0))Share on LinkedIn
![Image 26: Facebook!Image 27: FacebookShare on Facebook](javascript:void(0))Share on Facebook
![Image 28: email!Image 29: emailShare by Email](javascript:void(0))Share by Email
![Image 30: print!Image 31: printPrint this page](javascript:void(0))Print

Sign up for Elastic Cloud free trial

Spin up a fully loaded deployment on the cloud provider you choose. As the company behind Elasticsearch, we bring our features and support to your Elastic clusters in the cloud.

Start free trial

![Image 32: Elastic The Search AI Company](http://www.elastic.co/)

![Image 33: Elastic's LinkedIn page](https://www.linkedin.com/company/elastic-co)
![Image 34: Elastic's YouTube page](https://www.youtube.com/user/elasticsearch)
![Image 35: Elastic's Facebook page](https://www.facebook.com/elastic.co)
![Image 36: Elastic's Twitter page](https://www.twitter.com/elastic)
![Image 37: Elastic's GitHub page](https://github.com/elastic)

About us About Elastic Leadership Blog Newsroom
Join us Careers Career portal How we hire

Partners Find a partner Partner login Request access Become a partner
Trust & Security Legal Trust center Privacy Trade Compliance Ethics & Compliance

Investor relations Investor resources Governance Financials Stock
Excellence Awards Previous winners Elastic{ON} Tour Become a sponsor All events

About us

Join us

Partners

Trust & Security

Investor relations

Excellence Awards

This website and all associated content, software, discussion forums, products, and services are intended for professional use only. No consumer use of this website or its content is intended or directed.

Elastic, Elasticsearch, and other related marks are trademarks, logos, or registered trademarks of elasticsearch B.V. in the United States and other countries.

Apache, Apache Lucene, Apache Hadoop, Hadoop, HDFS and the yellow elephant logo are trademarks of the Apache Software Foundation in the United States and/or other countries. All other brand names, product names, or trademarks belong to their respective owners.

!Image 39!Image 40!Image 41

![Image 43](blob:https://www.elastic.co/18901235-3eb3-48b6-b751-33f048027def)

问问这篇内容

回答仅基于本篇材料

Skill 包

领域模板，一键产出结构化笔记

论文精读包
把一篇论文 / 技术博客精读成结构化笔记：问题、方法、实验、批判、延伸阅读。
- · TL;DR（1 段）
- · 研究问题与动机
- · 方法概览
投融资雷达包
把一条融资 / 创投新闻整理成投资人视角的雷达卡：交易要点、判断、竞争格局、风险、尽调清单。
- · 交易要点（公司 / 轮次 / 金额 / 投资人 / 估值，材料未明示则写 “未披露”）
- · 投资 thesis（这家公司为什么值得关注）
- · 竞争格局与替代方案

导出到第二大脑

支持 Notion / Obsidian / Readwise

下载 Markdown（Obsidian 直接拖入）

Elastic extends production-ready AI capabilities for all!