[Bro] Is there a way to use "bro-cut -d" automatically during log parsing?
Daniel Thayer
dnthayer at illinois.edu
Fri Aug 12 10:34:33 PDT 2016
You could create a shell script wrapper that contains this:
bro-cut -d "$@"
And then just use that script instead of bro-cut.
On 08/12/2016 10:54 AM, Dave Florek wrote:
> Hi,
>
> Is there a way to use "bro-cut -d" automatically during log parsing so
> when I open the Bro Logs, they're all in EST instead of Epoch?
>
> Thanks in advance,
>
>
More information about the Bro
mailing list