telekom-security/tpotce
1
0
Fork 0
mirror of https://github.com/telekom-security/tpotce.git synced 2025-07-02 01:27:27 -04:00
Code Issues Packages Projects Releases Wiki Activity

start integrating new honeypots into ELK

Browse Source
This commit is contained in:
t3chn0m4g3
2021-10-27 16:14:52 +00:00
parent 348a5d572b
commit 1a844d13ba
1 changed files with 9 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
docker/elk/logstash/dist/logstash.conf vendored
View File

@ -517,6 +517,15 @@ filter {
}
}
# Redishoneypot
if [type] == "Redishoneypot" {
date {
match => [ "time", "yyyy-MM-dd HH:mm:ss" ]
remove_field => ["time"]
remove_field => ["timestamp"]
}
}
# NGINX
if [type] == "NGINX" {
date {