Welcome to the new Splunkbase! To return to the old Splunkbase, click here.
Collections
Apps
Submit an app
Warning

This app is archived. Learn more

Suricata app for splunk app icon

Suricata app for splunk

Welcome to the Suricata app for Splunk. This app contains field extraction for Suricata fast.log and separate field extraction for Suricata ssh.json log. Suricata ssh.json it's a separate log for only ssh events (all ssh events in your traffic).

Built by
splunk product badge
screenshot
screenshot
screenshot
Latest Version 1.0
June 22, 2016
Compatibility
Not Available
CIM Version: 4.x
Rating

0

(0)

Log in to rate this app
Support
Suricata app for splunk support icon
Not Supported
Welcome to the Suricata app for Splunk. This app contains field extraction for Suricata fast.log and separate field extraction for Suricata ssh.json log. Suricata ssh.json it's a separate log for only ssh events (all ssh events in your traffic). Aslo in app you can find two dashboard. - First dashboard for analysis suricata fast.log - Second dashboad for visual analisis ssh.json log with function for flexible analysis by next field: data source, source and destination ip, server or client software, time.

Categories

Created By

Sergey Malinkin

Type

app

Downloads

1,265

Licensing

Splunk Answers

Resources

Log in to report this app listing