Skip to content

Releases: corelight/json-streaming-logs

Zeek 3.x+ support!

01 Dec 18:13
@sethhall sethhall
v3.0.0
4616cab
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Zeek 3.x+ support! Latest
Latest

Way late on this, but it should work with the upcoming Zeek 4.0 too. All of the necessary changes to rename scripts and change bro_init->zeek_init are in place. A few extra little changes snuck in with this update too.

  • Pulled in a change from Phil at Brim that makes it possible to disable rotation for the streaming logs JSONStreaming::enable_log_rotation
  • Made it possible to set JSONStreaming::extra_files to 0 if you don't want any of the backing files.
  • Added a JSONStreaming::system_name option if you'd like the extension fields in the logs to have a local system name.
Assets 2
Loading