标签: sed suricata
任何人都可以帮我创建一个在此日志文件中添加[ SURICATA ]的脚本吗?
[ SURICATA ]
alert http $EXTERNAL_NET any -> $HOME_NET any (msg:"ET SCAN SQL Injection Attempt (Agent uil2pn)"; flow:to_server,established; content:"$
答案 0 :(得分:0)
试试这个:
sed -i 's/.*:"/&[ SURICATA ]/' yourfile.log