Back to listing

snort extractor

Content Pack

jhaar
free!

Published

18 Nov 14:17

Last Push

18 Nov 14:18

Marketplace Rating

No rating yet

Discussion

3 Comments

Your Rating

Please sign in to rate this add-on.

Comments

n3xus over 2 years ago

https://github.com/jhaar/mygraylog-patches-extractor-snort/blob/master/extractor-snort

diegodblr almost 3 years ago

When I try to download the file, the following error appears: 404: Not Found

Rajeshunix13 over 3 years ago

Hi,
I have downloaded the snort extractor from https://marketplace.graylog.org/, successfully imported appliance-syslog-udp. as per my understand, All my snort extractors are pointing to system/input-> appliance-syslog-udp -> manage extractors - > Source field : messages.
so i have to use that search -> Fields ->message filter to filter the logs further.
am i correct?.

If yes, i want to use separate search -> Fields ->snort_message or snort_ip .. etc,

what is the process to create separate search -> Fields using snort extractor.

Please sign in to comment.

Back to listing