<div dir="ltr">Moving this to our development community mailing list to answer.<div><br></div><div><br><div class="gmail_quote">---------- Forwarded message ----------<br>From: <b class="gmail_sendername">'Sunari' via info</b> <span dir="ltr"><<a href="mailto:info@openinfosecfoundation.org">info@openinfosecfoundation.org</a>></span><br>Date: Tue, May 3, 2016 at 5:31 AM<br>Subject: [Open Information Security Foundation] Contact<br>To: <a href="mailto:info@oisf.net">info@oisf.net</a><br><br><br><b>Name:</b> Sunari<br><br>
<b>Email:</b> <a href="mailto:sunari1031@gmail.com" target="_blank">sunari1031@gmail.com</a><br><br>
<b>Comment:</b> Hello. I hava a question about suricata.<br>
I am with suricata 3.0.1, which is the newest version of suricata with elk by using eve-log output.<br>
I know eve-log output has payload, payload-printable, packet fields.<br>
It is useful to me.<br>
However, I noticed there's no hex for payload.<br>
It only has base64 encoded payload and ascii payload.<br>
Sometimes I need hex value when a packet detects with hex.<br>
(for example, to detect skype packet, my suricata check the packet whether it is "\x16\x03\x01\x00\x33". however payload_printable shows only "....3". I want to get "\x16\x03\x01\x00\x33" through eve-json file.<br>
Do you have some fields for hex or have a plan to develop this?<br>
<br>
Thanks you for reading my paper.<br>
(I don't know where i can ask about suricata, so I wrote here.)<br><br>
Time: May 3, 2016 at 9:31 am<br>
IP Address: 61.255.140.82<br>
Contact Form URL: <a href="https://oisf.net/contact/" target="_blank">https://oisf.net/contact/</a><br>
Sent by an unverified visitor to your site.
</div><br><br clear="all"><div><br></div>-- <br><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><font size="1" color="#0000ff"><b>Kelley Misata</b></font><div><font size="1" color="#0000ff"><b>Executive Director</b></font></div><div><font size="1" color="#0000ff"><b><a href="mailto:kmisata@oisf.net" target="_blank">kmisata@oisf.net</a></b></font></div><div><font size="1" color="#0000ff"><b>twitter:@OISFoundation</b></font></div><div><font size="1" color="#0000ff"><b><a href="http://www.oisf.net" target="_blank">www.oisf.net</a></b></font></div><div><br></div></div></div></div></div>
</div></div>