CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2025-12-07 17:52:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

Fix Eval Event Pickup

Browse Source
This commit is contained in:
Mike Reeves
2020-01-30 16:10:59 -05:00
parent 59d6b7cb8a
commit c32b2726fa
1 changed files with 16 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
salt/logstash/files/dynamic/0008_input_eval.conf
View File

@@ -177,6 +177,22 @@ input {
type => "bro_x509" type => "bro_x509"
tags => ["bro"] tags => ["bro"]
} }
file {
path => "/wazuh/alerts/alerts.json"
type => "ossec"
}
file {
path => "/wazuh/archives/archive.json"
type => "ossec_archive"
}
file {
path => "/osquery/logs/result.log"
type => "osquery"
}
file {
path => "/strelka/strelka.log"
type => "strelka"
}
} }
filter { filter {
if "import" in [tags] { if "import" in [tags] {