The jq tool is very useful for quickly parsing and filtering JSON files. In Suricata’s July webinar, join our QA expert, Corey Thomas, as he shares and demonstrates several jq tricks and commands to more efficiently parse the main Suricata log: eve.json, and filter useful information for threat hunting, troubleshooting, and more.
We’ll also be sharing a jq cheat sheet, for quick access to what you’ll learn!
Corey Thomas is OISF’s QA automation Engineer. He’s always finding ways to consistently reproduce problems and performance changes. He’s helped build and automate OISF’s hardware QA lab and integrate with Github PRs. He has been an Open Source contributor and IT professional for over a dozen years, making the world a safer place, one bug at a time.
Save the date:
2 pm UTC (1 hour long)
This webinar will be hosted via Zoom, register before the event to get a reminder: Webinar Registration - Zoom