CSEC_PUBLIC/securityonion
1
0
Fork 0
mirror of https://github.com/Security-Onion-Solutions/securityonion.git synced 2026-05-06 03:17:53 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
aa8fd647b655cb705e59fceb7fac5ec84df1ccb6
securityonion/salt/elasticsearch/files/ingest/zeek.ldap_search
T
reyesj2 e60a1e4357 zeek ldap & ldap_search parsing 
Signed-off-by: reyesj2 <94730068+reyesj2@users.noreply.github.com>
2025-01-09 16:06:10 -06:00

9 lines
377 B
Plaintext
Raw Blame History

{
"description":"zeek.ldap_search",
"processors":[
{"pipeline": {"name": "zeek.ldap", "ignore_missing_pipeline":true,"ignore_failure":true}},
{"set": {"field": "event.dataset", "value":"ldap_search"}},
{"remove": {"field": "tags", "ignore_missing":true}},
{"pipeline": {"name": "zeek.common"}}
]
}
Reference in New Issue View Git Blame Copy Permalink