Skip to content

bdalpe/cribl-rosetta-pack

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Repository files navigation

Cribl Rosetta Pack for Windows Events


This pack is in active development and subject to frequent breaking changes!

Some sample use cases:

  • NXLog Snare to Classic Format
  • Cribl Edge to XML
  • Cribl Edge to Classic
  • Cribl WEF Source XML format to Snare

Installation


  1. Install the Pack.
  2. Update the default Pack Route to use the Pipeline required.
  3. Update the Route at the Worker Group level to use the Pack.

Release Notes


Version 0.5.0 - 2021-07-20

  • Initial release

Contributing to the Pack


Discuss this pack on our Community Slack channel #packs.

Contact


The author of this pack is Brendan Dalpe and can be contacted at bdalpe@cribl.io.

License


This Pack uses the following license: MIT.

About

Format Translation for Windows Events

Resources

License

Stars

Watchers

Forks

Packages

No packages published