drop zeek tsv logs · conn dns http ssl files weird · correlate across logs · connection timeline · ioc extraction · runs locally
drop logs
Drop Zeek logs
conn.log dns.log http.log ssl.log files.log weird.log notice.log
status
drop zeek conn · dns · http · ssl · files · weird · notice logs