[Bro] Bro Elasticsearch 2+
daniel.guerra69 at gmail.com
Fri Nov 27 13:14:09 PST 2015
I’ve been working a while on the elasticsearch integration with bro.
There have been some issues like timestamp, the elstic 2.0 no dot
and the name/type changes in the logging (version …). See my changes
in https://github.com/danielguerra69/bro-debian-elasticsearch/blob/master/Dockerfile <https://github.com/danielguerra69/bro-debian-elasticsearch/blob/master/Dockerfile>
It was made pragmatic, some changes where just a quick hack.
The latest release is stable.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Bro