[Oisf-users] Suricata 2.0 Available!
Shirkdog
shirkdog at gmail.com
Tue Mar 25 16:40:02 UTC 2014
With all of this discussion about JSON, I will see if the guide applies to
Splunk 6 (adapt as necessary).
My issue is always the same:
Full Packet Capture or GTFO
On Mar 25, 2014 12:36 PM, "Cooper F. Nelson" <cnelson at ucsd.edu> wrote:
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
>
> The current version of logstash is 1.4.0 and does not work with this
> guide. Would it be possible to get it updated?
>
> I'll offer to help in any way possible, with the caveat that I haven't
> been able to get it to work myself.
>
> On 3/25/2014 3:41 AM, Victor Julien wrote:
>
> >
> > The Eve log allows for easy 3rd party integration. It has been created
> > with Logstash in mind specifically and we have a quick setup guide here
> >
> https://redmine.openinfosecfoundation.org/projects/suricata/wiki/_Logstash_Kibana_and_Suricata_JSON_output
> >
> >
>
>
>
> - --
> Cooper Nelson
> Network Security Analyst
> UCSD ACT Security Team
> cnelson at ucsd.edu x41042
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v2.0.17 (MingW32)
> Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
>
> iQEcBAEBAgAGBQJTMbBgAAoJEKIFRYQsa8FW4JgH/RSp0G99X3CV2rDfqvvCR91O
> mc6wR0QGWBYJEAOSK4trEdWHzTyxF6V2d7DtHmg7Wuw4shR5q44PCAYpmhJuJOGF
> Pc5OgZzOVL9e8k1QdIBfX+L+YQ6j8jIyE9diwQ6/I+IMDNpkAGu+FLQxGsVXd1qx
> ejw5G8VZKDGWWcZX8Aotqp6GZK25g3bFKoHO0no2tukF7UuLQCg7jL+8FzrLKlj7
> N4XwAtc9ik7aUMbP64HUEFde+Yf8mgUbjasqO0N4gk55pT2IhkUMgfE1Mq6vmDc5
> +5qH1/kQ9iTjLvOyHo8S4SwtHKS9FkJVljPSeLmuZj9YwOZPANR0h9uyBK5HdUE=
> =4nH8
> -----END PGP SIGNATURE-----
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> OISF: http://www.openinfosecfoundation.org/
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20140325/74b24836/attachment-0002.html>
More information about the Oisf-users
mailing list