[Bro-Dev] Bro IDS request
Aashish Sharma
asharma at lbl.gov
Fri Aug 12 11:14:26 PDT 2016
May be try: ftp://ftp.ee.lbl.gov/cf-1.2.5.tar.gz
eg: cf conn.log | less
On Fri, Aug 12, 2016 at 02:03:48PM -0400, Dave Florek wrote:
> Hello,
>
> Because I lose so much processing power when manually converting Bro output
> logs from Epoch to EST using bro-cut, can I have a feature that
> automatically outputs the Bro logs to EST automatically instead of Epoch
> while Bro is timestamping the logs as it sees the traffic?
>
> I'm not sure if using the Epoch format makes Bro much faster while it's
> processing, but I would like a more integrated solution aside from using
> the bro-cut utility.
>
> Thank you for your time,
> _______________________________________________
> bro-dev mailing list
> bro-dev at bro.org
> http://mailman.icsi.berkeley.edu/mailman/listinfo/bro-dev
More information about the bro-dev
mailing list