36 lines
847 B
JSON
36 lines
847 B
JSON
|
{
|
||
|
|
"timestamp": "2021-05-30T20:07:13.208777+0200",
|
||
|
|
"flow_id": 1696236471136137,
|
||
|
|
"in_iface": "s1-suricata",
|
||
|
|
"event_type": "alert",
|
||
|
|
"src_ip": "10.0.0.5",
|
||
|
|
"src_port": 18715,
|
||
|
|
"dest_ip": "179.60.192.3",
|
||
|
|
"dest_port": 80,
|
||
|
|
"proto": "TCP",
|
||
|
|
"alert": {
|
||
|
|
"action": "allowed",
|
||
|
|
"gid": 1,
|
||
|
|
"source": {
|
||
|
|
"ip": "10.0.0.5",
|
||
|
|
"port": 18715
|
||
|
|
},
|
||
|
|
"target": {
|
||
|
|
"ip": "179.60.192.3",
|
||
|
|
"port": 80
|
||
|
|
},
|
||
|
|
"signature_id": 6,
|
||
|
|
"rev": 0,
|
||
|
|
"signature": "Corrupted HTTP body",
|
||
|
|
"severity": 3,
|
||
|
|
"category": "Misc activity"
|
||
|
|
},
|
||
|
|
"flow": {
|
||
|
|
"pkts_toserver": 1,
|
||
|
|
"pkts_toclient": 0,
|
||
|
|
"bytes_toserver": 174,
|
||
|
|
"bytes_toclient": 0,
|
||
|
|
"start": "2021-05-30T20:07:13.208777+0200"
|
||
|
|
}
|
||
|
|
}
|