search

gravwell / kits

A collection of open source Gravwell kits
BSD 2-Clause "Simplified" License
3 stars 15 forks source link

corelight: fix use of booleans #156

Closed john-floren-gravwell closed 8 months ago

john-floren-gravwell commented 10 months ago

In the Zeek TSV format, they used T/F. In Corelight JSON, it's true/false. Make sure all scheduled searches etc. are updated.