The ELK Stack (Elasticsearch, Logstash, Kibana) emerged in the early 2010s as a powerful open-source solution for log management and data analysis. Each component has its own origin story, but together they form one of the most popular logging and analytics platforms in the world. The stack was later joined by Beats, leading to the name “Elastic Stack.”
Shay Banon, an Israeli software developer, created Elasticsearch in 2010. The project was based on his earlier work on Compass, a Java search engine library he developed starting in 2004.
Motivation:
- Compass was powerful but difficult to use in distributed environments
- Need for a scalable, real-time search engine
- Inspired by Apache Lucene (which Compass was built on)
- Desire for a RESTful, distributed search solution
First Release:
- Elasticsearch 0.4.0 released in February 2010
- Built on Apache Lucene
- Distributed by design
- RESTful API
Jordan Sissel, a system administrator, created Logstash in 2009 to solve log management challenges.
Motivation:
- Frustrated with existing log management tools
- Need for centralized log collection
- Desire for flexible log parsing and transformation
- Open-source alternative to commercial solutions
First Release:
- Initial release in 2009
- Ruby-based log processing pipeline
- Plugin architecture for flexibility
Rashid Khan created Kibana in 2013 as a visualization interface for Elasticsearch.
Motivation:
- Elasticsearch needed a user-friendly interface
- Existing tools were complex or expensive
- Need for real-time data exploration
- Dashboard and visualization capabilities
First Release:
- Kibana 1.0 released in 2013
- Built specifically for Elasticsearch
- Simple, intuitive interface
| Year |
Version |
Milestone |
| 2010 |
0.4.0 |
First public release |
| 2012 |
0.19.0 |
Major stability improvements |
| 2013 |
1.0.0 |
First stable release |
| 2014 |
1.4.0 |
Enhanced aggregation |
| 2015 |
2.0.0 |
Major architectural changes |
| 2016 |
5.0.0 |
Version alignment with Elastic Stack |
| 2017 |
6.0.0 |
SQL support, machine learning |
| 2019 |
7.0.0 |
Performance improvements |
| 2020 |
7.10.0 |
Security features, free tier |
| 2021 |
8.0.0 |
Security by default, vector search |
| 2023 |
8.x |
Enhanced AI/ML features |
| 2024 |
8.12 |
Generative AI integration |
| 2025 |
8.15 |
Enhanced observability |
| 2026 |
9.3.1 |
Current stable (February 2026) |
| Year |
Version |
Milestone |
| 2009 |
0.1.0 |
First release |
| 2012 |
1.0.0 |
First stable release |
| 2014 |
1.4.0 |
Enhanced plugins |
| 2015 |
2.0.0 |
Major rewrite |
| 2016 |
5.0.0 |
Version alignment |
| 2018 |
6.x |
Performance improvements |
| 2020 |
7.x |
Enhanced pipelines |
| 2022 |
8.x |
Cloud-native features |
| 2026 |
9.3.1 |
Current stable (February 2026) |
| Year |
Version |
Milestone |
| 2013 |
1.0.0 |
First release |
| 2014 |
3.0.0 |
Complete rewrite |
| 2015 |
4.0.0 |
AngularJS-based |
| 2016 |
5.0.0 |
Version alignment |
| 2017 |
6.0.0 |
Canvas, Maps |
| 2019 |
7.0.0 |
Lens visualization |
| 2021 |
8.0.0 |
Modern UI, improved performance |
| 2024 |
8.12 |
AI-assisted visualizations |
| 2026 |
9.3.1 |
Current stable (February 2026) |
1.x Era (2013-2015):
- Established core architecture
- Distributed indexing and search
- RESTful API
- Java-based
2.x Era (2015-2016):
- Removed deprecated features
- Improved cluster management
- Enhanced security (X-Pack)
5.x-6.x Era (2016-2019):
- Version alignment across stack
- Machine learning features
- SQL support
- Cross-cluster replication
7.x-8.x Era (2019-Present):
- Performance optimizations
- Security by default (8.x)
- Vector search for AI
- Generative AI integration
Early Versions (2009-2014):
- Ruby-based processing
- Plugin architecture
- Input/Filter/Output pipeline
2.x+ Versions (2015-Present):
- Performance improvements
- Persistent queues
- Enhanced monitoring
- Cloud-native support
Kibana 1-3 (2013-2014):
- Simple interface
- Basic visualizations
- Static dashboards
Kibana 4+ (2015-Present):
- AngularJS-based
- Real-time updates
- Advanced visualizations
- Machine learning integration
- AI-assisted features
In 2012, Shay Banon co-founded Elasticsearch BV (later Elastic NV) to:
- Provide commercial support
- Develop enterprise features
- Offer managed cloud services
- Build partner ecosystem
Co-founders:
- Shay Banon (CEO initially, then CTO)
- Steven Schuurman (CEO)
- Simon Willnauer
- Uri Boness
| Round |
Year |
Amount |
Investors |
| Series A |
2014 |
$70M |
Benchmark, Index Ventures |
| Series B |
2015 |
$40M |
Existing investors |
| Series C |
2018 |
$110M |
CapitalG, Index Ventures |
| IPO |
2018 |
$256M |
NYSE: ESTC |
¶ IPO and Public Company
- October 2018: Elastic went public on NYSE
- Ticker: ESTC
- Valuation: ~$5 billion at IPO
- 2026 Market Cap: ~$10+ billion
The addition of Beats (2015) expanded the stack:
Beats Family:
- Filebeat: Log file collection
- Metricbeat: System metrics
- Packetbeat: Network packets
- Heartbeat: Uptime monitoring
- Auditbeat: Audit data
- Functionbeat: Serverless data
- Announced: 2016
- GA: 2017
- Purpose: Managed Elastic Stack service
- Cloud Providers: AWS, GCP, Azure
¶ Security and Licensing Changes
2019:
- Basic security features made free
- Previously required paid license
2021:
- License change from Apache 2.0 to SSPL
- Controversial in open-source community
- Led to OpenSearch fork by AWS
Logstash Plugins:
- 200+ official plugins
- Input plugins (files, syslog, Kafka, etc.)
- Filter plugins (grok, mutate, date, etc.)
- Output plugins (Elasticsearch, Kafka, etc.)
Elasticsearch Plugins:
- Analysis plugins
- Ingest plugins
- Discovery plugins
- Security plugins
Kibana Plugins:
- Visualization plugins
- Dashboard extensions
- Custom applications
Elastic Stack gained widespread adoption:
- GitHub Stars: 65,000+ (Elasticsearch)
- Downloads: Millions monthly
- Enterprise: Fortune 500 companies
- Cloud: Elastic Cloud customers worldwide
Common Elastic Stack deployments:
- Log Management: Centralized logging
- Security Analytics: SIEM use cases
- Observability: APM and metrics
- Search Applications: Enterprise search
- Business Analytics: Data visualization
- GitHub Stars: 65,000+ (Elasticsearch)
- Contributors: 1,000+
- Downloads: Millions monthly
- Company: Public, profitable
- Cloud: Growing rapidly
- Regular releases across stack
- Active security patching
- AI/ML feature development
- Strong enterprise adoption
- Generative AI: Enhanced AI integration
- Observability: Full-stack monitoring
- Security: SIEM and security analytics
- Search: Enterprise search capabilities
- Cloud: Managed service expansion
Any questions?
Feel free to contact us. Find all contact information on our contact page.