Actions
Support #3384
closedLua Script Debugging
Status:
Closed
Priority:
Normal
Assignee:
-
Affected Versions:
Label:
Description
Hey Team,
I am curious if Suricata logs any debug info regarding Lua scripts it attempts to run. I found this blog post, https://www.abuseipdb.com/suricata, which provides a lua script that will submit api request to abuseipdb when an alert is fired, however, it does not appear to be working correctly. After I restart the Suricata engine, the log files abuseipdb_alert_reports.log and abuseipdb_custom_debug.log are created, which tells me suricata is reading the script, but I never see those logs populate, even after alerts fire. Is there any verbose debugging I can take advantage of to even see if Suricata is trying to run the script and what response, if any, I may be receiving from api.abuseipdb.com?
Thanks,
Taylor
Actions