mirror of
https://github.com/telekom-security/tpotce.git
synced 2025-07-02 04:52:11 +00:00
start integrating new honeypots into ELK
This commit is contained in:
t3chn0m4g3
parent
348a5d572b
commit
1a844d13ba
1 changed files with 9 additions and 0 deletions
9
docker/elk/logstash/dist/logstash.conf
vendored
9
docker/elk/logstash/dist/logstash.conf
vendored
|
|
@ -517,6 +517,15 @@ filter {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
# Redishoneypot
|
||||||
|
if [type] == "Redishoneypot" {
|
||||||
|
date {
|
||||||
|
match => [ "time", "yyyy-MM-dd HH:mm:ss" ]
|
||||||
|
remove_field => ["time"]
|
||||||
|
remove_field => ["timestamp"]
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
# NGINX
|
# NGINX
|
||||||
if [type] == "NGINX" {
|
if [type] == "NGINX" {
|
||||||
date {
|
date {
|
||||||
|
|
|
||||||
Loading…
Reference in a new issue