From 25bd58c9e617b8a3dced4c5de05db0cde96c52ee Mon Sep 17 00:00:00 2001
From: Mike Reeves <luke@geekempire.com>
Date: Thu, 4 Oct 2018 14:37:22 -0400
Subject: [PATCH] Logstash Module - Add some dynamic scripts

---
 salt/logstash/conf/conf.enabled.txt.so-node | 3 +++
 salt/logstash/conf/conf.enabled.txt.storage | 2 ++
 2 files changed, 5 insertions(+)

diff --git a/salt/logstash/conf/conf.enabled.txt.so-node b/salt/logstash/conf/conf.enabled.txt.so-node
index a4a2de722..42e68c933 100644
--- a/salt/logstash/conf/conf.enabled.txt.so-node
+++ b/salt/logstash/conf/conf.enabled.txt.so-node
@@ -68,6 +68,8 @@
 /usr/share/logstash/pipeline.so/6500_ossec.conf
 /usr/share/logstash/pipeline.so/6501_ossec_sysmon.conf
 /usr/share/logstash/pipeline.so/6502_ossec_autoruns.conf
+/usr/share/logstash/pipeline.so/6600_winlogbeat_sysmon.conf
+/usr/share/logstash/pipeline.so/6700_winlogbeat.conf
 /usr/share/logstash/pipeline.so/8000_postprocess_bro_cleanup.conf
 /usr/share/logstash/pipeline.so/8001_postprocess_common_ip_augmentation.conf
 /usr/share/logstash/pipeline.so/8006_postprocess_dns.conf
@@ -97,4 +99,5 @@
 /usr/share/logstash/pipeline.dynamic/9301_output_dns_windows.conf
 /usr/share/logstash/pipeline.dynamic/9400_output_suricata.conf
 /usr/share/logstash/pipeline.dynamic/9500_output_beats.conf
+/usr/share/logstash/pipeline.dynamic/9600_output_ossec.conf
 /usr/share/logstash/pipeline.dynamic/9998_output_test_data.conf
diff --git a/salt/logstash/conf/conf.enabled.txt.storage b/salt/logstash/conf/conf.enabled.txt.storage
index a4a2de722..9ad77c23f 100644
--- a/salt/logstash/conf/conf.enabled.txt.storage
+++ b/salt/logstash/conf/conf.enabled.txt.storage
@@ -68,6 +68,7 @@
 /usr/share/logstash/pipeline.so/6500_ossec.conf
 /usr/share/logstash/pipeline.so/6501_ossec_sysmon.conf
 /usr/share/logstash/pipeline.so/6502_ossec_autoruns.conf
+/usr/share/logstash/pipeline.so/6600_winlogbeat_sysmon.conf
 /usr/share/logstash/pipeline.so/8000_postprocess_bro_cleanup.conf
 /usr/share/logstash/pipeline.so/8001_postprocess_common_ip_augmentation.conf
 /usr/share/logstash/pipeline.so/8006_postprocess_dns.conf
@@ -97,4 +98,5 @@
 /usr/share/logstash/pipeline.dynamic/9301_output_dns_windows.conf
 /usr/share/logstash/pipeline.dynamic/9400_output_suricata.conf
 /usr/share/logstash/pipeline.dynamic/9500_output_beats.conf
+/usr/share/logstash/pipeline.dynamic/9600_output_ossec.conf
 /usr/share/logstash/pipeline.dynamic/9998_output_test_data.conf