Red Team's SIEM - tool for Red Teams used for tracking and alarming about Blue Team activities as well as better usability in long term operations.
BSD 3-Clause "New" or "Revised" License
2.38k
stars
370
forks
source link
Logstash Stage1 Download filter parse failure #229
Closed
MarcOverIP closed 2 years ago
Parsing of Download logs Stage1 C2 is not working.
The match rule of implant_output should not contain a final
;. But a quick test showed there is another error. Needs further investigation.