Skip to content
/ bro-notice-slack Public
forked from pgaulon/zeek-notice-slack

Script extending Bro Notice framework, adding Slack notifications

License

MIT license
0 stars 3 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

phireedi/bro-notice-slack

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

14 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
__load__.bro
__load__.bro
 
 
bro-pkg.meta
bro-pkg.meta
 
 
notice_slack.bro
notice_slack.bro
 
 

Repository files navigation

bro-notice-slack

Script extending Bro Notice framework, adding Slack notifications.

Usage

Append to bro_install/share/bro/site/local.bro:

@load ./notice_slack.bro

redef Notice::slack_webhook_url = "https://hooks.slack.com/services/T00000000/B00000000/XXXXXXXXXXXXXXXXXXXXXXXX";
redef Notice::slack_emoji = ":eyes:";
redef Notice::slack_channel = "#bro-channel";
redef Notice::slack_username = "Big Brother";

hook Notice::policy(n: Notice::Info)
{
    add n$actions[Notice::ACTION_SLACK];
}

TODO

  • Allow \n in Slack text by changing the pattern in to_json()
  • Add timeout block with Reporter::warning after when block
  • ...

About

Script extending Bro Notice framework, adding Slack notifications

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages

  • Zeek 100.0%