CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-06 17:22:49 +01:00
Code Issues Packages Projects Releases Wiki Activity

add event.dataset since there are other datasets in soc logs

Browse Source
This commit is contained in:
Jason Ertel
2024-05-24 08:38:12 -04:00
parent 15155613c3
commit bd11d59c15
1 changed files with 1 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
salt/soc/defaults.yaml
View File

@@ -1273,6 +1273,7 @@ soc:
- observer.ip - observer.ip
':soc:': ':soc:':
- soc_timestamp - soc_timestamp
- event.dataset
- source.ip - source.ip
- soc.fields.requestMethod - soc.fields.requestMethod
- soc.fields.requestPath - soc.fields.requestPath