Skip to content

z1pti3/jimiPlugin-event

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

108 Commits
models
models
 
 
web
web
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
event.json
event.json
 
 
event.py
event.py
 
 

Repository files navigation

jimiPlugin-event

jimi SIEM functionality

Dev Notes

eventValues can contain additional data which is then presented within the UI. This is done by creating a new dict key with _data appended to the end. The start of the key MUST match the key of the list data. An example for how this works is shown:

{
"assets" ["abcd","efgh","ijkl"],
"assets_data": { "abcd" : { "name" : "test2", "ip" : "192.168.0.1" }, "efgh" : {}, "ijkl" : {} 
}

Doing this enables assets to be matched to additonal data within assets_data that can then be used to enrich data witin the UI

About

jimi SIEM functionality

Topics

security alerting siem jimi jimiplugin

Resources

Readme

License

Apache-2.0 license
Activity

Stars

3 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages