policy/misc/dump-events.zeek¶

DumpEvents¶

This script dumps the events that Zeek raises out to standard output in a readable form. This is for debugging only and allows to understand events and their parameters as Zeek processes input. Note that it will show only events for which a handler is defined.

Namespace: DumpEvents

Summary¶

Runtime Options¶

`DumpEvents::include`: `pattern` `&redef`	Only include events matching the given pattern into output.
`DumpEvents::include_args`: `bool` `&redef`	If true, include event arguments in output.

Redefinable Options¶

DumpEvents::dump_all_events: bool &redef

By default, only events that are handled in a script are dumped.

Detailed Interface¶

Runtime Options¶

DumpEvents::include ¶

Type

Attributes

Default

/^?(.*)$?/

Only include events matching the given pattern into output. By default, the pattern matches all events.

DumpEvents::include_args ¶

Type: bool
Attributes: &redef
Default: T

If true, include event arguments in output.

Redefinable Options¶

DumpEvents::dump_all_events ¶

Type: bool
Attributes: &redef
Default: F

By default, only events that are handled in a script are dumped. Setting this option to true will cause unhandled events to be dumped too.

Read the Docs v: master (git/master)

Versions: master; v4.1.1; v4.1.0; v4.0.4; v4.0.3; v4.0.2; v4.0.1; v4.0.0; v4.0.0-rc3; v4.0.0-rc2; v4.0.0-rc1; v3.2.3; v3.2.2; v3.2.1; v3.2.0; v3.2.0-rc1; v3.1.4; v3.1.3; v3.1.2; v3.1.1; v3.1.0; v3.1.0-rc; v3.0.14; v3.0.13; v3.0.12; v3.0.11; v3.0.10; v3.0.9; v3.0.8; v3.0.7; v3.0.6; v3.0.5; v3.0.4; v3.0.3; v3.0.2; v3.0.1; v3.0.0; lts; devel; current

Downloads: html

On Read the Docs: Project Home; Builds