beenull/crowdsec
1
0
Fork 0
Code Issues Pull requests Packages Projects Releases Wiki Activity
crowdsec/pkg/leakybucket/tests/simple-trigger-external-data/bucket.yaml
Thibault "bui" Koechlin dbb420f79e
local api (#482) 
Co-authored-by: AlteredCoder
Co-authored-by: erenJag
2020-11-30 10:37:17 +01:00

14 lines
419 B
YAML
Raw Permalink Blame History

type: trigger
debug: true
name: test/simple-trigger
data:
- source_url: https://invalid.com/test.list
dest_file: simple-trigger-external-data/simple_patterns.txt
type: string
description: "Simple trigger with external data"
filter: "evt.Line.Labels.type =='testlog' && evt.Parsed.tainted_data in File('simple-trigger-external-data/simple_patterns.txt')"
groupby: evt.Meta.source_ip
labels:
type: overflow_1
Reference in a new issue View git blame Copy permalink