FYI … From Stamus Networks - this cheat sheet offers tips and tricks to select, filter and get rapid results from Suricata using JQ - the JSON command-line processing tool - by parsing standard Suricata eve.json logs.
FYI … From Stamus Networks - this cheat sheet offers tips and tricks to select, filter and get rapid results from Suricata using JQ - the JSON command-line processing tool - by parsing standard Suricata eve.json logs.