digital-forensics-labs/SecGen
1
0
Fork 0
mirror of https://github.com/cliffe/SecGen.git synced 2026-02-21 19:28:02 +00:00
Code Issues Packages Projects Releases Wiki Activity

logstash config fixes

Browse Source
This commit is contained in:
thomashaw
2021-01-12 13:59:04 +00:00
parent c74e6020ac
commit 4ccf2ca4a5
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
lib/helpers/rules.rb
View File

@@ -62,7 +62,7 @@ class Rules
" query_string:\n" +
' query: "combined_path: \"' + goal['file_path'] + '\" AND auditd.result: success AND event.action: opened-file"' + "\n" +
"alert:\n" +
" - \"modules.alerter.exec.ExecAlerter\"\n" +
" - \"elastalert.modules.alerter.exec.ExecAlerter\"\n" +
"command: [\"/usr/bin/ruby\", \"/opt/alert_actioner/alert_router.rb\"]\n" +
"pipe_match_json: true\n" +
"realert:\n" +