on Oct 20, 2017If you attended my sessions on Lua Parsing in NetWitness, we referenced some materials as well as a parser template I use when starting to write a Lua parser. I wanted to share that material here. Be sure to check out the examples as well as the nw-api.lua as references when building your own.
As always, if you have questions, please reach out.
Thanks,
Chris
Thank you Chris, I'm working on a small lua parser to extract several archaic IMS query fields in Guardium logs outside what is presented to the CEF parser itself and all of this has been helpful. If I have any success or obstacles I'll create a new post and tag you if you're willing to help/provide guidance.