[Oisf-users] Appending, modifying key/values eve.log?
John Daly
longjohngolf at gmail.com
Thu Dec 8 22:14:13 UTC 2016
Hi all,
Curious if there is a configuration option to add or modify key, value
pairs in the eve log?
The goal is to add a key called "tool_name" with the value "suricata". Or
change the event_type value from "alert" to "suricata_alert".
Thanks much!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20161208/172ee7a4/attachment.html>
More information about the Oisf-users
mailing list