[Oisf-users] Suricata eve json output
Peter Manev
petermanev at gmail.com
Wed Jun 5 08:50:31 UTC 2019
On Sat, May 4, 2019 at 12:25 PM Derek Zhou <dzhou at anomali.com> wrote:
>
>
>> Hi team,
>>
>> Is suricata able to output all network traffic to json output?
Do you mean packet capture? Yes Suricata can write it to disk as a pcap(s)
>>
>> According to doc, it seems it only output http, dns, tls, ssh and flow?
There are more protos available as well.
>>
>> Thanks.
>
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
>
> Conference: https://suricon.net
> Trainings: https://suricata-ids.org/training/
--
Regards,
Peter Manev
More information about the Oisf-users
mailing list