mirror of
https://github.com/Security-Onion-Solutions/securityonion.git
synced 2026-04-01 10:21:51 +02:00
ebc1152376
Full rebuild of all analyzer source-packages via pip download targeting cp314/manylinux_2_17_x86_64 to match the so-soc Dockerfile base image (python:3.14.3-slim). Replaces cp313 wheels with cp314 for pyyaml and charset_normalizer, and picks up certifi 2026.2.25 (from 2026.1.4).
Localfile
Description
Utilize a local CSV file (or multiple) for associating a value to contextual data.
Configuration Requirements
file_path - Path(s) used for CSV files containing associative data. CSV files can be dropped in the analyzer directory, with file_path specified like mycsv.csv.
- The value in the first column is used for matching
- Header information should be supplied, as it is used for dynamically creating result sets
- Matches will be aggregated from the provided CSV files
The content of the CSV file(s) should be similar to the following:
Ex.
MatchValue,MatchDescription,MatchReference
abcd1234,ThisIsADescription,https://siteabouthings.abc
The file_path value(s) should be set in the sensoroni pillar, like so:
sensoroni:
analyzers:
localfile:
file_path:
- $file_path1
- $file_path2