crowdsec/config/patterns/tcpdump

2 lines
163 B
Text
Raw Permalink Normal View History

2020-05-15 09:39:16 +00:00
TCPDUMP_OUTPUT %{GREEDYDATA:timestamp} IP %{IPORHOST:source_ip}\.%{INT:source_port} > %{IPORHOST:dest_ip}\.%{INT:dest_port}: Flags \[%{GREEDYDATA:tcpflags}\], seq