[Bro] Writing logs to both ACII and JSON
Jan Grashöfer
jan.grashoefer at gmail.com
Mon Jan 9 08:03:58 PST 2017
Hi James,
> Apologies in advance if this is an uninformed question - is it possible to
> configure Bro to write logs to both ASCII and JSON outputs (in different
> directories, preferably)?
some time ago I have written a small script that should fit your needs:
https://gist.github.com/J-Gras/f9f86828f9e9d9c0b8f0908bc3573bb0
Using path_json you should also be able to log into a different directory.
I hope this helps,
Jan
More information about the Bro
mailing list