Tool documentation

Elasticsearch on HydraPWK has been deprecated. (29-10-2025) LICENSE problem

As default elasticsearch on hydrapwk disabling xpack security for making hydrapwk team easier to handle some tools which use elasticsearch as backend, like arkime.

in hydrapwk default configuration elasticsearch (elasticsearch.yml) is stored in /etc/elasticsearch/elasticsearch.yml

you can modify it for setting up your own configuration.

elasticsearch it’self is part of service handled by _elasticsearch user, Please DON’T run elasticsearch manually.

starting elasticsearch

If you want to start elasticsearch via application menu, you just need navigate to.

Applications menu -> 18-Service -> Elasticsearch -> elasticsearch-start

starting via terminal

if you want to start elasticsearch service via terminal you can run this command

hydrapwk@hydrapwk:~$ sudo systemctl start elasticsearch.sevice
or
hydrapwk@hydrapwk:~$ sudo elasticsearch-start