[Oisf-users] Additional data in eve.json
Ramona Tăme
ramona.tame at gmail.com
Tue May 26 09:44:38 UTC 2020
Hi,
I am trying to add more that for triggered alerts within eve.json such as
DNS lookups, URL, certificates and so on. Would you please let me know how
to do it and if need to use a Lua script send it to me if you have any? I
enabled extended data within the config and I get more data but not these
ones that I need.
Thank you
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20200526/637f6930/attachment.html>
More information about the Oisf-users
mailing list