Actions
Feature #266
openlog http raw request for network forensic
Effort:
medium
Difficulty:
medium
Label:
Description
It would be great that suricata can log raw http traffic for network forensic audit.
each http request and response in a file (response body can be optional).
Modsecurity audit log is a good reference: http://www.modsecurity.org/documentation/modsecurity-apache/2.5.12/modsecurity2-data-formats.html#N10269
Actions