<p>Thanks to the conditional block, we can create proper alerts. A simple example:</p><h3>Example1: send a report after comparing values from two websites</h3><ol><li><p>Capture a string/numeric value from a website</p></li><li><p>Capture numeric/string value from another website</p></li><li><p>Compare the two</p></li><li><p>Skip sending the report if condition is met</p></li></ol><h3>Example2: alert if a numeric reading is above/below a threshold</h3><p>This is useful for brute force attack detection, or any other alerts about high log event count over time.</p><ol><li><p>Capture Kibana discovery query results “count” for the last hour</p></li><li><p>Compare if this value is &gt; 1 million</p></li><li><p>Send the report (notify the system admin)</p></li></ol><h2></h2><p></p><p></p>

Conditional actions enables alerting

Help Center

Improved

Fixed

anaphora

In Review

Planned

In Progress

Completed

Rejected

High Priority

Low Priority

Planning

Main Roadmap

Hey {name|there}! 👋

Anaphora

Conditional actions enables alerting

Example1: send a report after comparing values from two websites

Example2: alert if a numeric reading is above/below a threshold