[Bro] using intel framework for scripts
Matt Stucky
mattchess50 at gmail.com
Thu Nov 21 08:17:06 PST 2013
Does the framework take care of updating the system on the fly if the input
files change, or is a restart needed?
-matt
On Thu, Nov 21, 2013 at 8:30 AM, Seth Hall <seth at icir.org> wrote:
>
> On Nov 21, 2013, at 9:22 AM, John Babio <jbabio at po-box.esu.edu> wrote:
>
> > How does one leverage this framework to write scripts?
>
>
> It depends on what you want to do. The docs we have for it show you how
> to use it (to get an intel.log file). Is that all you're interested in?
> Loading data and finding things that hit?
>
> http://www.bro.org/sphinx/frameworks/intel.html
>
> .Seth
>
> --
> Seth Hall
> International Computer Science Institute
> (Bro) because everyone has a network
> http://www.bro.org/
>
>
> _______________________________________________
> Bro mailing list
> bro at bro-ids.org
> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20131121/553fb725/attachment.html
More information about the Bro
mailing list