zeek-log-add-mac-addresses

https://github.com/reshadp/zeek-log-add-mac-addresses
1 3 0 0 Last Push 7/11/23, 9:29 AM

Add link-layer (MAC) address to all Zeek logs

This script attempts to add the originator (source) and responder (destination) mac address to all logs that have the conn_id (id) field.

This script borrows heavily from the work done by the corelight team's log-add-vlan-everywhere plugin.

Package Version :

Description :

Add MAC address to all logs.

Script Dir :

scripts

Tags :

log extend mac