From 74f346f9181fc16db34edb8319fae44d298c3ffc Mon Sep 17 00:00:00 2001 From: Derek Ditch Date: Fri, 16 Oct 2020 10:10:49 -0500 Subject: [PATCH] Change results to nested field --- x-pack/filebeat/module/virustotal/README.md | 4 ++++ x-pack/filebeat/module/virustotal/fields.go | 2 +- x-pack/filebeat/module/virustotal/livehunt/_meta/fields.yml | 2 +- .../filebeat/module/virustotal/livehunt/ingest/pipeline.yml | 6 ++++++ 4 files changed, 12 insertions(+), 2 deletions(-) diff --git a/x-pack/filebeat/module/virustotal/README.md b/x-pack/filebeat/module/virustotal/README.md index ddf71925bb5..0b023a4ea6b 100644 --- a/x-pack/filebeat/module/virustotal/README.md +++ b/x-pack/filebeat/module/virustotal/README.md @@ -95,3 +95,7 @@ kafkacat -b 127.0.0.1:9093 -C -t virustotal.raw | head | jq ``` Configure filebeat to use the kafka input as show above, and run it until all events are replayed. After which, you can switch back to `httpjson` as the input type and stream new data. + +```shell +./filebeat -c filebeat.dev.yml -e +``` diff --git a/x-pack/filebeat/module/virustotal/fields.go b/x-pack/filebeat/module/virustotal/fields.go index a3f26e0a5e9..5f8ed86edac 100644 --- a/x-pack/filebeat/module/virustotal/fields.go +++ b/x-pack/filebeat/module/virustotal/fields.go @@ -19,5 +19,5 @@ func init() { // AssetVirustotal returns asset data. // This is the base64 encoded gzipped contents of module/virustotal. func AssetVirustotal() string { - return "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" + return "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" } diff --git a/x-pack/filebeat/module/virustotal/livehunt/_meta/fields.yml b/x-pack/filebeat/module/virustotal/livehunt/_meta/fields.yml index 5455fd38e84..dd2d892ec72 100644 --- a/x-pack/filebeat/module/virustotal/livehunt/_meta/fields.yml +++ b/x-pack/filebeat/module/virustotal/livehunt/_meta/fields.yml @@ -21,7 +21,7 @@ - name: results description: > Contains each engine's resulting data about sample - type: group + type: nested fields: - name: method description: > diff --git a/x-pack/filebeat/module/virustotal/livehunt/ingest/pipeline.yml b/x-pack/filebeat/module/virustotal/livehunt/ingest/pipeline.yml index 6b1c35078b4..1b45145e3e3 100644 --- a/x-pack/filebeat/module/virustotal/livehunt/ingest/pipeline.yml +++ b/x-pack/filebeat/module/virustotal/livehunt/ingest/pipeline.yml @@ -64,6 +64,12 @@ processors: formats: - UNIX +- date: + field: virustotal.analysis.results.engine_update + ignore_failure: True + formats: + - yyyyMMdd + on_failure: - set: field: error.message