CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

Change index to detections.alerts

Browse Source
This commit is contained in:
weslambert
2024-05-13 12:59:17 -04:00
committed by GitHub
parent 927fe91f25
commit 26b5a39912
1 changed files with 2 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

4
salt/elastalert/files/modules/so/securityonion-es.py
View File

@@ -56,8 +56,8 @@ class SecurityOnionESAlerter(Alerter):
"event_data": match, "event_data": match,
"@timestamp": timestamp "@timestamp": timestamp
} }
url = f"https://{self.rule['es_host']}:{self.rule['es_port']}/logs-playbook.alerts-so/_doc/" url = f"https://{self.rule['es_host']}:{self.rule['es_port']}/logs-detections.alerts-so/_doc/"
requests.post(url, data=json.dumps(payload), headers=headers, verify=False, auth=creds) requests.post(url, data=json.dumps(payload), headers=headers, verify=False, auth=creds)
def get_info(self): def get_info(self):
return {'type': 'SecurityOnionESAlerter'} return {'type': 'SecurityOnionESAlerter'}