Throughout the previous weeks, I have been experimenting with several improvements to the DShield SIEM, aimed at handling DShield sensor logs from both local and cloud sensors utilizing Filebeat along with Filebeat modules. This setup allows for straightforward transmission of Zeek and NetFlow logs back to a local network ELK stack through home router NAT configuration. Below is a compilation of updates and improvements: