Advertisement
D0cEvil

Logstash - Suricata fast.log

Sep 23rd, 2022
109
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
JavaScript 0.34 KB | Cybersecurity | 0 0
  1. # Строчечка парсит fast.log сурикаты
  2.  
  3. %{GREEDYDATA:timestamp}   ?\[?\*?\*?\] ?\[%{INT}:%{INT}:%{INT}?\] %{WORD} %{WORD} %{GREEDYDATA:signature}  ?\[?\*?\*?\] ?\[%{WORD}: %{GREEDYDATA:classification}?\] ?\[%{WORD}: %{INT:priority}?\] ?\{%{WORD:protocol}?\} %{IP:ip.source}:%{INT:port.source} -> %{IP:ip.dst}:%{INT:port.dst}
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement