policy/misc/weird-stats.bro

SumStats
WeirdStats

Log weird statistics.

Namespaces:SumStats, WeirdStats
Imports:base/frameworks/cluster, base/frameworks/sumstats

Summary

Redefinable Options

WeirdStats::weird_stat_interval: interval &redef How often stats are reported.

Redefinitions

Log::ID: enum  

Detailed Interface

Redefinable Options

WeirdStats::weird_stat_interval
Type:interval
Attributes:&redef
Default:15.0 mins

How often stats are reported.

Types

WeirdStats::Info
Type:

record

ts: time &log

Timestamp for the measurement.

name: string &log

Name of the weird.

num_seen: count &log

Number of times weird was seen since the last stats interval.

Events

WeirdStats::log_weird_stats
Type:event (rec: WeirdStats::Info)