Hi,
I need to extract attack names from Fortigate logs. All attack logs are the same, but only a few are correctly extracted.
As you can see below, the two first attack fields are correctly extracted with "WebRTC..." but the other with "Nuclear.exploit.Kit" or "OpenSSL.ChangeCipher.Injection" are not detected.
I tried to manually extract the fields using regex, but I didn't succeed using the extract command.
Thanks for help 😉
... View more