Change index to detections.alerts

2025-12-06 09:12:45 +01:00 · 2024-05-13 12:59:17 -04:00
parent 927fe91f25
commit 26b5a39912
1 changed files with 2 additions and 2 deletions
--- a/salt/elastalert/files/modules/so/securityonion-es.py
+++ b/salt/elastalert/files/modules/so/securityonion-es.py
@@ -56,8 +56,8 @@ class SecurityOnionESAlerter(Alerter):
                "event_data": match,
                "@timestamp": timestamp
            }
-            url = f"https://{self.rule['es_host']}:{self.rule['es_port']}/logs-playbook.alerts-so/_doc/"
+            url = f"https://{self.rule['es_host']}:{self.rule['es_port']}/logs-detections.alerts-so/_doc/"
            requests.post(url, data=json.dumps(payload), headers=headers, verify=False, auth=creds)

    def get_info(self):
-        return {'type': 'SecurityOnionESAlerter'}
+        return {'type': 'SecurityOnionESAlerter'}