Skip to content

z1pti3/jimiPlugin-event

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

108 Commits

models

models

 
 

web

web

 
 

.gitignore

.gitignore

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

event.json

event.json

 
 

event.py

event.py

 
 

Repository files navigation

jimiPlugin-event

jimi SIEM functionality

Dev Notes

eventValues can contain additional data which is then presented within the UI. This is done by creating a new dict key with _data appended to the end. The start of the key MUST match the key of the list data. An example for how this works is shown:

{
"assets" ["abcd","efgh","ijkl"],
"assets_data": { "abcd" : { "name" : "test2", "ip" : "192.168.0.1" }, "efgh" : {}, "ijkl" : {} 
}

Doing this enables assets to be matched to additonal data within assets_data that can then be used to enrich data witin the UI

About

jimi SIEM functionality

Topics

security alerting siem jimi jimiplugin

Resources

Readme

License

Apache-2.0 license
Activity

Stars

3 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages