<img height="1" width="1" style="display:none;" alt="" src="https://px.ads.linkedin.com/collect/?pid=2180921&amp;fmt=gif">

Download this 1-page Cheat Sheet

This cheat sheet contains tips and tricks to select, filter and get rapid results from Suricata using JQ - the JSON command-line processing tool - by parsing standard Suricata eve.json logs.

The commands covered in this cheat sheet are focused on the network security monitoring (NSM) data and protocol logs such as SMB, Anomaly, HTTP, DNS, TLS, Flow and others.

Download this cheat sheet as a quick reference guide to the JQ commands used to query Suricata NSM data.