[Bro] Logging in multiple formats
Jan Grashöfer
jan.grashoefer at gmail.com
Tue Apr 5 04:42:13 PDT 2016
Hi Carl,
> Is there a way to log in both formats easily similar to how Suricata can
> emit both JSON and other log types all at once?
once I ran into the same problem and wrote a small script that might
help: https://gist.github.com/J-Gras/f9f86828f9e9d9c0b8f0908bc3573bb0
It adds a filter to generate additional JSON logs for the configured log
streams.
Hope this helps,
Jan
More information about the Bro
mailing list