zeek/scripts/base/frameworks/intel at d426f36ebe207d478ca1d23280248bed38c4ee7a - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00

History

Seth Hall 8d283db63b Adds a "node" field to Intel::Seen struture and intel.log. The intel framework can now indicate which node discovered a hit on an intel item through the new "node" field in the Intel::Seen data structure. On clusters, this field will contain the name of the node where the hit was seen.		2014-09-23 12:23:39 -04:00
..
__load__.bro	Only the manager tries to read files with the input framework now.	2012-10-10 13:00:48 -04:00
cluster.bro	Fix typos and formatting in the intel framework docs	2013-10-10 15:23:19 -05:00
input.bro	Fix typos and formatting in the intel framework docs	2013-10-10 15:23:19 -05:00
main.bro	Adds a "node" field to Intel::Seen struture and intel.log.	2014-09-23 12:23:39 -04:00
README	Add README files for most Bro frameworks	2013-10-11 00:19:37 -05:00

README

The intelligence framework provides a way to store and query intelligence
data (such as IP addresses or strings). Metadata can also be associated
with the intelligence.