Giters

hosom / bro2heka

Small utility for automatically generating Lua sandbox scripts to parse Bro logs.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

bro2heka

Small utility for automatically generating Lua sandbox scripts to parse Bro logs.

This go program will parse a bro log header and generate a Lua script that can be used with Heka to parse your logs.

Binaries for Windows and Linux are available in the releases.

Special thanks to Michal Purzynski and MozDef for the example scripts that helped a ton.

You can find the examples I based my work off of at: https://github.com/jeffbryner/MozDef/tree/master/examples/heka-lua-bro

=============================================== Building from source.

Requirements: golang

Once go is installed, simply run the following:

go build bro2heka.go

Afterwards, it should be ready to go.

About

Small utility for automatically generating Lua sandbox scripts to parse Bro logs.

Languages

Language:Go 100.0%