archive
/
PurpleDome
mirror of https://github.com/avast/PurpleDome
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
develop
polishing2
presentation_gpn_2022
more_unit_tests
extending_page
main
caldera_4
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'a89376701e'
${ noResults }
PurpleDome/plugins/default/sensors/linux_filebeat
History
Thorsten Sick 928934ae8d some git cleanup 2 years ago
..
README.md Added linux filebeat sensor and template feature for config files 3 years ago
filebeat.conf some git cleanup 2 years ago
filebeat.yml some git cleanup 2 years ago
filebeat_template.conf Fixing filebeat 2 years ago
linux_filebeat_plugin.py Added prototyp for detection logic and attack diagrams 2 years ago

README.md

Filebeat plugin

Basic demo plugin for a linux filebeat sensor.

Important feature

The sensor demos a feature to create config files based on a template before the file is deployed to the target.

Current state

Basic functionality is working. The logging is not optimized. Will come back to it as soon as we have more attacks.