search

opensearch-project / security-analytics

Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailor the pre-packaged solution.
Apache License 2.0
70 stars 72 forks source link

[FEATURE] Rename network events to Network events: Zeek #512

Open sandervandegeijn opened 1 year ago

sandervandegeijn commented 1 year ago

Is your feature request related to a problem? There are no docs per log type, this makes implementing and using the security analytics quite difficult. That being said, the field mapping for the network events seems to hint at that the source should be Zeek. There are many more solutions like Suricata, so it would be more user friendly to call the network logs by it's actual implementation: Zeek or Network logs: Zeek?

What solution would you like? Clear naming and better documentation

What alternatives have you considered? n/a

Do you have any additional context?

image
praveensameneni commented 6 months ago

adding this to our backlog