Skip to content

Commit

Permalink
Cherry-pick #20138 to 7.x: [Filebeat] Update crowdstrike module (#20176)
Browse files Browse the repository at this point in the history 
* [Filebeat] Update crowdstrike module (#20138)

* Update crowdstrike module

(cherry picked from commit 5e9a3a5)

* Fix up changelog
  • Loading branch information
@andrewstucki
andrewstucki committed Jul 23, 2020
1 parent b80fc78 commit dee93b2
Show file tree
Hide file tree
Showing 14 changed files with 1,915 additions and 240 deletions.
3 changes: 3 additions & 0 deletions CHANGELOG.next.asciidoc
View file
Expand Up @@ -252,6 +252,7 @@ field. You can revert this change by configuring tags for the module and omittin
- Fix Filebeat OOMs on very long lines {issue}19500[19500], {pull}19552[19552]
- Fix s3 input parsing json file without expand_event_list_from_field. {issue}19902[19902] {pull}19962[19962]
- Ignore missing in Zeek module when dropping unecessary fields. {pull}19984[19984]
- Fix millisecond timestamp normalization issues in CrowdStrike module {issue}20035[20035], {pull}20138[20138]

*Heartbeat*

Expand Down Expand Up @@ -565,6 +566,8 @@ field. You can revert this change by configuring tags for the module and omittin
- Add experimental dataset sonicwall/firewall for Sonicwall Firewalls logs {pull}19713[19713]
- Add experimental dataset squid/log for Squid Proxy Server logs {pull}19713[19713]
- Add experimental dataset zscaler/zia for Zscaler Internet Access logs {pull}19713[19713]
- Add event.ingested for CrowdStrike module {pull}20138[20138]
- Add support for additional fields and FirewallMatchEvent type events in CrowdStrike module {pull}20138[20138]

*Heartbeat*

Expand Down

0 comments on commit dee93b2

Please sign in to comment.