Alex-Devera/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-11-01 13:02:54 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2

Compare commits

base: Alex-Devera:80f2dc49047461439701ccab83a64a82284e727b
Branches Tags
Alex-Devera:master
Alex-Devera:dependabot/github_actions/dot-github/workflows/lycheeverse/lychee-action-2.0.2
Alex-Devera:24.04
Alex-Devera:alpha
Alex-Devera:22.04
Alex-Devera:dev
Alex-Devera:20.06
Alex-Devera:19.03
Alex-Devera:18.11
Alex-Devera:24.04.1
Alex-Devera:24.04.0
Alex-Devera:24.04.0beta
Alex-Devera:22.04.0
Alex-Devera:20.06.2
Alex-Devera:20.06.1
Alex-Devera:20.06.0
Alex-Devera:19.03.3
Alex-Devera:19.03.1
Alex-Devera:19.03
Alex-Devera:19.03.beta
Alex-Devera:18.11.1
Alex-Devera:18.11
Alex-Devera:17.10
Alex-Devera:17.10.beta
Alex-Devera:17.10.alpha
Alex-Devera:16.10.1
Alex-Devera:16.10
..
compare: Alex-Devera:d2fe64be1908b8d400e42155f05ed64ed40f4d3c
Branches Tags
Alex-Devera:master
Alex-Devera:dependabot/github_actions/dot-github/workflows/lycheeverse/lychee-action-2.0.2
Alex-Devera:24.04
Alex-Devera:alpha
Alex-Devera:22.04
Alex-Devera:dev
Alex-Devera:20.06
Alex-Devera:19.03
Alex-Devera:18.11
Alex-Devera:24.04.1
Alex-Devera:24.04.0
Alex-Devera:24.04.0beta
Alex-Devera:22.04.0
Alex-Devera:20.06.2
Alex-Devera:20.06.1
Alex-Devera:20.06.0
Alex-Devera:19.03.3
Alex-Devera:19.03.1
Alex-Devera:19.03
Alex-Devera:19.03.beta
Alex-Devera:18.11.1
Alex-Devera:18.11
Alex-Devera:17.10
Alex-Devera:17.10.beta
Alex-Devera:17.10.alpha
Alex-Devera:16.10.1
Alex-Devera:16.10

2 commits
80f2dc4904 ... d2fe64be19

Author SHA1 Message Date
dz
d2fe64be19
Merge 36b2e47d0d into 6faf600d40 2025-07-03 10:39:24 -04:00
t3chn0m4g3
6faf600d40 Fix logstash logging issue, introduced with Sentrypeer 4.0.4 
Similar to #1807
 2025-07-03 10:48:18 +02:00
2 changed files with 14 additions and 8 deletions
Show stats Expand all files Collapse all files

11
docker/elk/logstash/dist/http_output.conf vendored
View file

@ -698,12 +698,15 @@ filter {
remove_field => ["event_timestamp"] remove_field => ["event_timestamp"]
} }
mutate { mutate {
rename => { split => ["source_ip", ":"]
"source_ip" => "src_ip" rename => { "destination_ip" => "dest_ip" }
"destination_ip" => "dest_ip"
}
add_field => { "dest_port" => "5060" } add_field => { "dest_port" => "5060" }
} }
mutate {
add_field => { "src_ip" => "%{[source_ip][0]}" }
add_field => { "src_port" => "%{[source_ip][1]}" }
remove_field => ["source_ip"]
}
} }
# Tanner # Tanner

11
docker/elk/logstash/dist/logstash.conf vendored
View file

@ -698,12 +698,15 @@ filter {
remove_field => ["event_timestamp"] remove_field => ["event_timestamp"]
} }
mutate { mutate {
rename => { split => ["source_ip", ":"]
"source_ip" => "src_ip" rename => { "destination_ip" => "dest_ip" }
"destination_ip" => "dest_ip"
}
add_field => { "dest_port" => "5060" } add_field => { "dest_port" => "5060" }
} }
mutate {
add_field => { "src_ip" => "%{[source_ip][0]}" }
add_field => { "src_port" => "%{[source_ip][1]}" }
remove_field => ["source_ip"]
}
} }
# Tanner # Tanner