search

jasonish / evebox

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
https://evebox.org/
MIT License
417 stars 67 forks source link

Question about what "#" means #210

Closed ngms17 closed 1 year ago

ngms17 commented 2 years ago

Hi,

In the web browser, what does the "#" means? Some alerts have "1" and others have "2"

jasonish commented 2 years ago

Its the number of events that match that (source ip, dest ip, event id). The timestamp shown is for the most recent one.