Changes for version 0.009
- Change: a8bdf7fe47b1257ad61926f521d595c03feee26a Author: Brad Lhotsky <brad@divisionbyzero.net> Date : 2026-05-19 15:06:18 +0000
- Add Test::UnusedVars Plugin and fix an unused variable error
- Change: cb1ad6dc0bf82b56ac03b36b1dd2366e4521a829 Author: Brad Lhotsky <brad@divisionbyzero.net> Date : 2025-07-05 00:30:07 +0000
- Add to the gitignore
- Change: 2bc18e2d46bbd18c574f311a9ec90152c76ca80b Author: Brad Lhotsky <brad@divisionbyzero.net> Date : 2025-07-05 00:28:42 +0000
- Remove _type from indexing and add a caddy parser
- Change: 21c210a13e5e9b73e990c5added12ce6787c8272 Author: Brad Lhotsky <brad@divisionbyzero.net> Date : 2025-01-10 21:38:45 +0000
- Whitespace
- Change: a74bbd07b0d7d1f78789e96a7c0011f937932f8c Author: Brad Lhotsky <brad@divisionbyzero.net> Date : 2024-09-15 02:37:19 +0000
- Fixes for optspec and documentation generated
- Change: 70440d082ccba56129d76a03ae3a5861f68ceae3 Author: Brad Lhotsky <brad@divisionbyzero.net> Date : 2019-10-14 17:15:48 +0000
- Fix iptables parser for log lines with reference parts
- Change: f99ddacbead2f2733327275ec4e51b401a92a5ff Author: Brad Lhotsky <brad@divisionbyzero.net> Date : 2019-06-22 15:51:14 +0000
- Documentation and Meta Fixes
- Add a mailmap for this repo * Override the default Pod::Weaver config * Add workers option to the eris-stdin-listener.pl * Fix authordeps
- Plus 8 releases after 2024-05-22 00:00:00 +0000.
Documentation
Utility for testing the logging contextualizer
Simple wrapper to spawn workers for handling syslog stream
Sample implementation using the eris toolkit to index data to elasticsearch
Utility for testing the logging contextualizer
Simple wrapper to spawn workers for handling syslog stream
Modules
Eris is the Greek Goddess of Chaos
Field dictionary loader
Contains fields in the Common Event Expression syntax
Contains fields eris adds to events
Debugging data in the event
Contains fields extracted from syslog messages
Structured log or event object implementation
Apply MaxMind GeoIP Data to events
Inspects URL's for common attack patterns
Convert the caddy JSON structure to the CEE format
Parse crond messages to structured data
Parses dhcpd messages into structured data.
Parses iptables messages into structured data.
Parse the pfSense filterlog
Parses postfix messages into structured data
Parses the Snort and Suricata alert logs
Parse sshd logs into structured data
Add static keys/values to every message
Parses the sudo key=value pairs into structured documents
Parse the yum syslog output into structured data
Discovery and access for context objects
Primary interface to the eris log parsing library
Decodes any detected JSON in a log line from then opening curly brace
Parse the syslog headers using Parse::Syslog::Line
Discovery and access for decoders
Role for implementing a log context
Role for implementing decoders
Interface for implementing a dictionary object
Simple dictionary implementation based off a hash
Implements the plumbing for an object to support plugins
Common interface for implementing an eris plugin
Role for implementing a schema
Schema for the syslog data
Discovery and access for schemas