Open vysecurity opened 4 years ago
Thanks, Vincent! This is definitely coming in future updates.
All suggestions noted :)
I'd like to add that some log info can be enabled by enabling debug output (start with -debug). It shows timestamps of downloads (but not the IP address of the host that performed the download unfortunately).
Not to Pile on but this would be a fantastic idea for using RedELK as the logging means, I'm pretty sure I can make a config file to get it going, just need to take a look after this engagement is over and I have time. Freaking awesome piece of kit you made, thank you! https://github.com/outflanknl/RedELK
@rrlocksmith This sounds like a great idea! Do you intend to fork? If so, I'd be interested to help! :)
It would be good to see the logging for each file that is requested, and also have a master log that writes to a file.
It would also be cool if you can click on the file, and it can show a summary of the geographical locations where it has been requested and the hotspots.
Would be good if you can search accesses by IP too.