CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 09:12:45 +01:00
Code Issues Packages Projects Releases Wiki Activity

FEATURE: Add Events table columns for event.module strelka #12716

Browse Source
This commit is contained in:
Doug Burks
2024-04-02 10:42:20 -04:00
committed by GitHub
parent a678a5a416
commit 2f03cbf115
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
salt/soc/defaults.yaml
View File

@@ -570,6 +570,15 @@ soc:
- file.mime_type - file.mime_type
- log.id.fuid - log.id.fuid
- event.dataset - event.dataset
':strelka:file':
- soc_timestamp
- file.name
- file.size
- hash.md5
- file.source
- file.mime_type
- log.id.fuid
- event.dataset
':suricata:': ':suricata:':
- soc_timestamp - soc_timestamp
- source.ip - source.ip