[Zeek] URL logs
Alexander Kushnarev
alexander.kushnarev at outlook.com
Tue Aug 13 12:53:13 PDT 2019
Also for some reasons I don't get any http traffic in the log even thou I should've have at least or two logs of browsing to different websites
Get Outlook for Android<https://aka.ms/ghei36>
________________________________
From: zeek-bounces at zeek.org <zeek-bounces at zeek.org> on behalf of Alexander Kushnarev <alexander.kushnarev at outlook.com>
Sent: Tuesday, August 13, 2019 10:18:15 PM
To: Justin Azoff <justin at corelight.com>
Cc: zeek at zeek.org <zeek at zeek.org>
Subject: Re: [Zeek] URL logs
Is there a way to make the two combine into one field?
Get Outlook for Android<https://aka.ms/ghei36>
________________________________
From: Justin Azoff <justin at corelight.com>
Sent: Tuesday, August 13, 2019 10:12:34 PM
To: Alexander Kushnarev <alexander.kushnarev at outlook.com>
Cc: zeek at zeek.org <zeek at zeek.org>
Subject: Re: [Zeek] URL logs
http. the full url is a combination of host and uri columns.
On Tue, Aug 13, 2019 at 3:05 PM Alexander Kushnarev <alexander.kushnarev at outlook.com<mailto:alexander.kushnarev at outlook.com>> wrote:
Hi Team
Can you please advice which of the logs contain the full urls to which I have accessed ?
All of the logs that I’ve gone thru contains only the domain and not the full request with the url.
Any help will be appreciated.
Alex.
_______________________________________________
Zeek mailing list
zeek at zeek.org<mailto:zeek at zeek.org>
http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/zeek
--
Justin
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/zeek/attachments/20190813/a5bd303a/attachment.html
More information about the Zeek
mailing list