Channels
Description
Channels are responsible for the delivery of events.
Syntax
[channel.<you_choose_the_nickname_of_the_channel>]
type="<official_name_of_the_channel>"
# .. arguments
[[filter]]
type=<string> #optional
channel=["<nickname_of_the_channel>"]
How many?
You can define as many channels as you want.
Arguments
Each channel has its own arguments.
[[filter]]
The filter selects the data that is send to a previously defined channel.
There are three types of data that can be collected with the HoneyTrap framework:
events
generated events triggered by connections to the honeypotalerts
output of canarylogging
framework system logging
[[filter]]
type=<string> #optional
channel=["<nickname_of_the_channel>"]
Example
[channel.console01]
type="console"
[[filter]]
channel=["console"]
Channels available
Linux | MacOS | |
---|---|---|
console | yes | yes |
dshield | yes | yes |
elasticsearch | yes | yes |
file | yes | yes |
kafka | yes | yes |
marija | yes | yes |
pulsar | yes | yes |
rabbitmq | yes | yes |
raven | yes | yes |
slack | yes | yes |
splunk | yes | yes |