From a8a93260a9b90df32434c2e504a62ea4403a5e39 Mon Sep 17 00:00:00 2001
From: Wes Lambert <wlambertts@gmail.com>
Date: Tue, 3 Mar 2020 22:40:06 +0000
Subject: [PATCH] add file extraction

---
 salt/zeek/files/local.zeek | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/salt/zeek/files/local.zeek b/salt/zeek/files/local.zeek
index b902eee32..bbb4a78be 100644
--- a/salt/zeek/files/local.zeek
+++ b/salt/zeek/files/local.zeek
@@ -124,3 +124,6 @@ redef LogAscii::json_timestamps = JSON::TS_ISO8601;
 
 # BPF Configuration
 @load securityonion/bpfconf
+
+# Extracted files
+@load securityonion/file-extraction