valitydev/osquery-1
14
0
Fork 0
mirror of https://github.com/valitydev/osquery-1.git synced 2024-11-07 09:58:54 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
0a08620b65
osquery-1/specs/linux/syslog_events.table

14 lines
572 B
Plaintext
Raw Blame History

table_name("syslog_events", aliases=["syslog"])
schema([
Column("time", BIGINT, "Current unix epoch time"),
Column("datetime", TEXT, "Time known to syslog"),
Column("host", TEXT, "Hostname configured for syslog"),
Column("severity", INTEGER, "Syslog severity"),
Column("facility", TEXT, "Syslog facility"),
Column("tag", TEXT, "The syslog tag"),
Column("message", TEXT, "The syslog message"),
Column("eid", TEXT, "Event ID", hidden=True),
])
attributes(event_subscriber=True)
implementation("syslog_events@SyslogEventSubscriber::genTable")
Reference in New Issue View Git Blame Copy Permalink