Security Analytics enables users for detecting security threats on their security event log data. It will also allow them to modify/tailor the pre-packaged solution.
Apache License 2.0
70
stars
72
forks
source link
[FEATURE] Rename network events to Network events: Zeek #512
Is your feature request related to a problem?
There are no docs per log type, this makes implementing and using the security analytics quite difficult. That being said, the field mapping for the network events seems to hint at that the source should be Zeek. There are many more solutions like Suricata, so it would be more user friendly to call the network logs by it's actual implementation: Zeek or Network logs: Zeek?
What solution would you like?
Clear naming and better documentation
Is your feature request related to a problem? There are no docs per log type, this makes implementing and using the security analytics quite difficult. That being said, the field mapping for the network events seems to hint at that the source should be Zeek. There are many more solutions like Suricata, so it would be more user friendly to call the network logs by it's actual implementation: Zeek or Network logs: Zeek?
What solution would you like? Clear naming and better documentation
What alternatives have you considered? n/a
Do you have any additional context?