Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support Bro dns.log processing #48

Closed
chrisforce1 opened this issue Dec 13, 2017 · 1 comment
Closed

Support Bro dns.log processing #48

chrisforce1 opened this issue Dec 13, 2017 · 1 comment
Assignees
@krhubert

Comments

@chrisforce1
Copy link
Contributor

chrisforce1 commented Dec 13, 2017
edited

If we can process the Bro dns.log format (by reading the file from the local filesystem) we can deploy NFR onto Bro IDS sensors and Corelight appliances to submit data to our API for scoring. The schema is described here and we just need to pick up the ts, id.orig_h, query, and qtype_name values for each query.
@chrisforce1 chrisforce1 mentioned this issue Dec 13, 2017
Closed
@krhubert
Copy link
Contributor

krhubert commented Jan 8, 2018

Done. fc39fbb

@krhubert krhubert closed this as completed Jan 8, 2018
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@krhubert krhubert

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@krhubert @chrisforce1