CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-21 00:13:06 +01:00
Code Issues Packages Projects Releases Wiki Activity

Update Zeek and Strelka

Browse Source
This commit is contained in:
Wes Lambert
2020-04-01 19:11:10 +00:00
parent 1df2302287
commit 09022ad752
1 changed files with 3 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
salt/logstash/pipelines/config/so/9100_output_osquery.conf.jinja
View File

@@ -9,8 +9,9 @@
output { output {
if "osquery" in [tags] { if [module] =~ "osquery" {
elasticsearch { elasticsearch {
pipeline => "%{module}.%{dataset}"
hosts => "{{ ES }}" hosts => "{{ ES }}"
index => "so-osquery-%{+YYYY.MM.dd}" index => "so-osquery-%{+YYYY.MM.dd}"
template => "/so-common-template.json" template => "/so-common-template.json"