[Zeek] Logs Conversion
Eric Ooi
ericooi at gmail.com
Mon Aug 5 08:34:47 PDT 2019
You can edit /opt/bro/share/bro/site/local.bro (assuming you’ve installed it to /opt/bro) and add "@load policy/tuning/json-logs.bro” (without quotes) and then redeploy Bro.
> On Aug 5, 2019, at 4:29 AM, Shahzaib Shah <smshahzaibshah at gmail.com> wrote:
>
> Hi there.
> I have been collecting log file using bro and all the log file that I received is in .log file and I logs in .json formate. Is there any way to convert that log files into .json formate?? any idea??
>
> I am trying to convert this using " sudo bro -i wlp1s0 -e 'redef LogAscii::use_json=T;' "
> But getting no result.?
>
> thanks regards
> Syed Shahzaib
> _______________________________________________
> Zeek mailing list
> zeek at zeek.org
> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/zeek
More information about the Zeek
mailing list