update ELK and WazuhAPP to version 5.2.1

docker-compose.yml

@@ -35,7 +35,7 @@ services:
     environment:
       - LS_HEAP_SIZE=2048m
   elasticsearch:
-    image: elasticsearch:5.2.0
+    image: elasticsearch:5.2.1
     hostname: elasticsearch
     restart: always
     command: elasticsearch -E node.name="node-1" -E cluster.name="wazuh" -E network.host=0.0.0.0

kibana/Dockerfile

@@ -1,4 +1,4 @@
-FROM kibana:5.2.0
+FROM kibana:5.2.1
 
 RUN apt-get update && apt-get install -y curl
 

kibana/config/wait-for-it.sh

@@ -18,7 +18,7 @@ sleep 30
 if /usr/share/kibana/bin/kibana-plugin list | grep wazuh; then
   echo "Wazuh APP already installed"
 else
-  /usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-2.0_5.2.0.zip
+  /usr/share/kibana/bin/kibana-plugin install https://packages.wazuh.com/wazuhapp/wazuhapp-2.0_5.2.1.zip
 fi
 
 exec $cmd

logstash/Dockerfile

@@ -1,4 +1,4 @@
-FROM logstash:5.2.0
+FROM logstash:5.2.1
 
 RUN apt-get update
 

logstash/config/logstash.conf

@@ -22,6 +22,10 @@ filter {
         source => "srcip"
         target => "GeoLocation"
     }
+    date {
+        match => ["timestamp", "ISO8601"]
+        target => "@timestamp"
+    }
     mutate {
         remove_field => [ "timestamp", "beat", "fields", "input_type", "tags", "count" ]
     }