Skip to content

Commit

Permalink
for read bombs
Browse files Browse the repository at this point in the history
  • Loading branch information
tomrade committed Jul 24, 2020
1 parent 499849f commit a6cbcba
Showing 1 changed file with 33 additions and 1 deletion.
34 changes: 33 additions & 1 deletion README.md
Original file line number Diff line number Diff line change
Expand Up @@ -52,4 +52,36 @@ So far I only have one outout plugin called "elastic_nom"
]
}

```
```

## Plugins

### Elasticsearch "elastic_nom"

``` json
{
"name" : "elastic_nom",
"enabled" : true,
"es_host" : "localhost",
"es_port" : "9200",
"es_index" : "evtx_nom",
"security" : "none",
"es_user" : "USERNAME",
"es_pass" : "PASSWORD",
"es_api_key" : "APIKEY",
"es_scheme" : "http"
}
```

| field | value type | notes |
| --- | --- | --- |
| name | elastic_nom | it must be elastic_nom |
| enabled | bool | true or false, if true it will be used |
| es_host | string | ip or host of elasticsearch |
| es_port | string | port of elasticsearch (default is 9200) |
| es_index | string | index to write events to |
| security | string | can be "none" , "basic" or "api" |
| es_user | string | elasticsearch security username (for basic auth |
| es_pass | string | elasticsearch security password ( for basic auth)|
| es_api_key | string | base64 encoded api key (for api auth) |
| es_scheme| string | http or https (for security you will be using https) |

0 comments on commit a6cbcba

Please sign in to comment.