zeek/scripts/base/frameworks/notice at d85d20b7f6b7cbbec31149f5a02b51c7e93ec12f - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00

History

Tim Wojtulewicz 0a0ed65306 Merge remote-tracking branch 'origin/topic/robin/gh-54-sanitize' * origin/topic/robin/gh-54-sanitize: Sanitize log files names before they go into system().		2021-09-22 12:17:05 -07:00
..
actions	Expand the tests, and have email_admin email src contacts in one e-mail, and dst contacts in another.	2021-06-17 14:49:24 -05:00
__load__.zeek	GH-379: move catch-and-release and unified2 scripts to policy/	2019-06-05 13:33:45 -07:00
main.zeek	Merge remote-tracking branch 'origin/topic/robin/gh-54-sanitize'	2021-09-22 12:17:05 -07:00
README	More bro-to-zeek renaming in scripts and other files	2019-05-16 02:36:41 -05:00
weird.zeek	GH-1184: Add 'source' field to weird log denoting where the weird was reported	2020-12-01 09:34:37 -07:00

README

The notice framework enables Zeek to "notice" things which are odd or
potentially bad, leaving it to the local configuration to define which
of them are actionable.  This decoupling of detection and reporting allows
Zeek to be customized to the different needs that sites have.