Hey All I’m trying to get the Open Threat Exchange - Threat intel plugin working on a graylog instance in my lab. I have installed the Content pack and added a a pipeline to a Squid Proxy stream to try to get some basic threat analysis on the field “_server_ip” … but it will not add fields to the s…

Threat Intelligence Plugin Help

dscryber (David Sciuto) Split this topic May 27, 2021, 2:13pm 2

2 posts were merged into an existing topic: About the Daily Challenges category

Topic		Replies	Views
Trying to get the Open Threat Exchange - Threat intel plugin working on a Graylog Graylog Central (peer support) pipeline-rules	10	1395	June 25, 2021
Greylog Threat Intel Plugin Missing fields Graylog Central (peer support)	5	1294	April 2, 2018
Setting up Threat Intelligence To Use OTX in 2.4.x Graylog Add-ons	5	3828	January 25, 2018
Not able to understand Threat Intelligence plugin Graylog Central (peer support) pipeline-rules	4	2348	May 16, 2018
Threat Intel Setup Graylog Central (peer support)	6	967	June 6, 2022