modules

package modules

import "github.com/TLop503/LogCrunch/agent/hemoglobin/modules"

Index

func HandleConfigTarget(target structs.Target) (structs.ParserModule, error)
func MetaParse(log string, module structs.ParserModule) (map[string]interface{}, error)

Functions

func HandleConfigTarget

func HandleConfigTarget(target structs.Target) (structs.ParserModule, error)

HandleConfigTarget determines if each target is using a custom module, and then either initializes the module or pulls from the registry

func MetaParse

func MetaParse(log string, module structs.ParserModule) (map[string]interface{}, error)

MetaParse parses logs into named fields and stages them for transmission Takes a log (read from a file), and a module containing a regex and a schema The log is processed with the regex, and the resulting named fields are organized according to the schema the final logcrunch log is sent to the log channel for transmission to the siem server