Elastic Vienna Meetup - Security and ES|QL

Join us for another exciting meetup in Vienna on Wednesday, October 22. We'll have a lot of interesting content, networking, food and refreshments.

This event is tailored for tech enthusiasts, professionals, and anyone eager to learn more about Elasticsearch, GenAI, Machine Learning, and more.

This time we're even more excited to announce a special opportunity where we'll be joined by Thorben Jändling, our Principal Solutions Architect from the Global Security Specialists Group, who is coming all the way from Switzerland for this event. This is a unique chance to connect with him and gain insights into the latest in security.

Don't miss out on this evening to learn more about security and network with an expert!

Location:
EBCONT Zentrale
Handelskai 94-96 / Millenniums Tower, Wien

Meetup agenda:
18:00 Doors open, join us for a drink

18:30 Talk #1 ESQL in action
Daniel Zettel, Senior IT Consultant at EBCONT
Abstract: In this session, I’ll show how I use ES|QL for fast data exploration and on-the-fly transformations. With it, I can filter, aggregate, and enrich data ad-hoc—without relying on runtime fields or ingest pipelines. I’ll also demonstrate how the insights and queries I create can be turned directly into actionable alert rules.

19:00 Talk #2 RedLine, Dissected — TTPs, Telemetry & Detection Engineering
Thorben Jändling, Principal Solutions Architect at Elastic
Abstract: A technical deep dive into the RedLine infostealer: infection vectors, on-host/network behaviours, artefact parsing, and exfil patterns. We’ll map TTPs to ATT&CK, craft practical hunting queries (EQL/ES|QL), discuss enrichment (hash/DNS/geo), and outline rule logic and lab simulations—focusing on reproducible methods rather than a product tour.

19:30 Networking - Open discussions, Drinks, Snacks

Invite your friends and RSVP on this page.

We hope to see you there!