policy/misc/dump-events.zeek

DumpEvents

This script dumps the events that Zeek raises out to standard output in a readable form. This is for debugging only and allows to understand events and their parameters as Zeek processes input. Note that it will show only events for which a handler is defined.

Namespace

DumpEvents

Summary

Runtime Options

DumpEvents::include: pattern &redef

Only include events matching the given pattern into output.

DumpEvents::include_args: bool &redef

If true, include event arguments in output.

Redefinable Options

DumpEvents::dump_all_events: bool &redef

By default, only events that are handled in a script are dumped.

Detailed Interface

Runtime Options

DumpEvents::include
Type

pattern

Attributes

&redef

Default
/^?(.*)$?/

Only include events matching the given pattern into output. By default, the pattern matches all events.

DumpEvents::include_args
Type

bool

Attributes

&redef

Default

T

If true, include event arguments in output.

Redefinable Options

DumpEvents::dump_all_events
Type

bool

Attributes

&redef

Default

F

By default, only events that are handled in a script are dumped. Setting this option to true will cause unhandled events to be dumped too.