Comments (5)
mmta
commented on May 30, 2024
What's the content of your ossimref directory? if it's empty you will need to run the following script on the OSSIM machine and copy the results to that directory first.
#!/bin/bash
echo "select sid, kingdom, category from alienvault.alarm_taxonomy" | ossim-db > ossim_alarm_taxonomy.tsv
echo "select * from alienvault.alarm_kingdoms" | ossim-db > ossim_alarm_kingdom.tsv
echo "select * from alienvault.alarm_categories" | ossim-db > ossim_alarm_category.tsv
echo "select * from alienvault.product_type" | ossim-db > ossim_product_type.tsv
echo "select id,name from alienvault.category" | ossim-db > ossim_product_category.tsv
echo "SELECT id,cat_id,name FROM alienvault.subcategory;" | ossim-db > ossim_product_subcategory.tsv
The above TSV files must be in ossimref for ossimcnv to work.
from dsiem.
cntrigkog
commented on May 30, 2024
Thanks for your reply!
Actually, we managed to fix it as there was an issue with the ossim .XML files header and once we fixed it the .ossimcv worked flawlessly.
from dsiem.
lixiaodon
commented on May 30, 2024
Hello, I have met the same mistake, may I ask where you modified it?
from dsiem.
lixiaodon
commented on May 30, 2024
Thanks for your reply!
Actually, we managed to fix it as there was an issue with the ossim .XML files header and once we fixed it the .ossimcv worked flawlessly.
Hello, I have met the same mistake, may I ask where you modified it?
from dsiem.
Eden4701
commented on May 30, 2024
I added label to .xml files, and it worked.
from dsiem.
Related Issues (20)
- Dsiem-Tools HOT 1
- [Question] Using Dsiem without ELK
- why doesn't dsiem accept logs? HOT 1
- CustomData problem HOT 1
- [Feature Request] Accept json array in POST /events route HOT 1
- CustomData special
- [Question] Reload directives HOT 1
- !:1 usage
- Unable to send events from Logstash to Dsiem HOT 2
- linux/arm64 server build HOT 1
- Order Independent "AND" for Directives? HOT 1
- How to set directives HOT 3
- 404 error when running demo HOT 1
- Unable to see siem_alarms in Kibana and Dsiem HOT 1
- esconfig.json HOT 1
- One stage rule
- Disconnected from ES http://elasticsearch:9200: Error: No Living connections HOT 2
- Disconnected from ES http://:9200: Error: No Living connection HOT 2
- Error while getting firewall logs to DSIEM and Kibana Dashboard HOT 1
- DSIEM WITH AUDITD LOGS
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from dsiem.