RedELK icon indicating copy to clipboard operation
RedELK copied to clipboard

Published 20 hours ago verified publisher icon outflanknl

New alarm: alarm_genericlog

Open MarcOverIP opened this issue 4 years ago • 1 comments

New alarm, sort of a catch all, when'RedELK alarm' is written to an implant log or the c2 eventlog. Alarm should include the rest of that specific the log line. This allows the RT operator to script/develop implant actions that can trigger an alarm, have them freedom of what is included in the alarm, all without having to modify RedELK source code on alarm definitions.

MarcOverIP avatar Jan 26 '21 13:01 MarcOverIP

Cool for first move after next working version :)

xychix avatar Feb 02 '21 08:02 xychix

Fixed with #274

MarcOverIP avatar Oct 01 '22 18:10 MarcOverIP