{"id":114,"date":"2015-01-09T15:16:31","date_gmt":"2015-01-09T15:16:31","guid":{"rendered":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=114"},"modified":"2017-12-03T21:33:46","modified_gmt":"2017-12-03T21:33:46","slug":"list-of-orchids-modules","status":"publish","type":"page","link":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=114","title":{"rendered":"List of Orchids modules"},"content":{"rendered":"<p>Orchids modules can be used basically for three purposes: as <a title=\"Input modules\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=126\">input modules<\/a>, meant to obtain data from specific sources; as <a title=\"Dissection modules\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=131\">dissection modules<\/a>, meant to parse data into fields; and as <a href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=656\">extension modules<\/a>, whose purpose is to extend the Orchids language.<\/p>\n<h3>Input modules<\/h3>\n<ul>\n<li><a title=\"The textfile module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=87\"><code>textfile<\/code><\/a>: reading from text files, pipes, and local (Unix) TCP sockets<\/li>\n<li><a title=\"The binfile module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=396\"><code>binfile<\/code><\/a>: reading from binary files, pipes, and local (Unix) TCP sockets<\/li>\n<li><a title=\"The bintotext module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=121\"><code>bintotext<\/code><\/a>: converting from raw packets to text<\/li>\n<li><a title=\"The udp module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=171\"><code>udp<\/code><\/a>: reading from UDP Internet sockets<\/li>\n<li><a title=\"The sockunix module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=210\"><code>sockunix<\/code><\/a>: reading from local (Unix) UDP sockets<\/li>\n<li><a title=\"The prelude module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=345\"><code>prelude<\/code><\/a>: reading events from the <a href=\"https:\/\/www.prelude-siem.org\">Prelude<\/a> manager (this is also an extension module, see below)<\/li>\n<\/ul>\n<h3>Dissection modules<\/h3>\n<ul>\n<li><a title=\"The auditd module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=103\"><code>auditd<\/code><\/a>: Linux auditd system events<\/li>\n<li><a title=\"The syslog module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=157\"><code>syslog<\/code><\/a>: Linux syslog event system, Cisco logs<\/li>\n<li><a title=\"The openbsm module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=225\"><code>openbsm<\/code><\/a>: Open BSM, subsumes Sun BSM and Darwin BSM (Apple Mac OS X)<\/li>\n<li><a title=\"The openbsm module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=619\"><code>json<\/code><\/a>: JSON (JavaScript Object Notation)<\/li>\n<li><a title=\"The openbsm module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=628\"><code>generic<\/code><\/a>: the generic module, allowing one to define new virtual modules through regular expressions<\/li>\n<li><a href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=707\"><code>snmptrap<\/code><\/a>: read SNMP alerts from MIBs<\/li>\n<\/ul>\n<h3>\u00a0Extension modules<\/h3>\n<ul>\n<li><a title=\"The consoles module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=322\"><code>consoles<\/code><\/a>: printing on specific channels<\/li>\n<li><a title=\"The idmef module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=327\"><code>idmef<\/code><\/a>: handling and creating IDMEF alerts<\/li>\n<li><a title=\"The iodef module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=331\"><code>iodef<\/code><\/a>: handling and creating IODEF reports<\/li>\n<li><a title=\"The xml module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=362\"><code>xml<\/code><\/a>: manipulating XML documents (in particular, IDMEF, IODEF)<\/li>\n<li><a title=\"The metaevent module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=339\"><code>metaevent<\/code><\/a>: injecting synthetic events<\/li>\n<li><a title=\"The prelude module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=345\"><code>prelude<\/code><\/a>: sending events to the Prelude manager or to PreWikka (this is also an input module, see above)<\/li>\n<li><a title=\"The sharedvars module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=353\"><code>sharedvars<\/code><\/a>: sharing values across threads<\/li>\n<li><a title=\"The timeout module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=357\"><code>timeout<\/code><\/a>: setting a timeout<\/li>\n<li><a title=\"The timeout module\" href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=532\"><code>sendmail<\/code><\/a>: sending messages or reports by email<\/li>\n<\/ul>\n","protected":false},"excerpt":{"rendered":"<p>Orchids modules can be used basically for three purposes: as input modules, meant to obtain data from specific sources; as dissection modules, meant to parse data into fields; and as extension modules, whose purpose is to extend the Orchids language. Input modules textfile: reading from text files, pipes, and local (Unix) TCP sockets binfile: reading &hellip; <a href=\"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/?page_id=114\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">List of Orchids modules<\/span> <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"parent":0,"menu_order":0,"comment_status":"closed","ping_status":"open","template":"","meta":{"footnotes":""},"class_list":["post-114","page","type-page","status-publish","hentry"],"_links":{"self":[{"href":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/index.php?rest_route=\/wp\/v2\/pages\/114","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/index.php?rest_route=\/wp\/v2\/pages"}],"about":[{"href":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/index.php?rest_route=\/wp\/v2\/types\/page"}],"author":[{"embeddable":true,"href":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=114"}],"version-history":[{"count":33,"href":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/index.php?rest_route=\/wp\/v2\/pages\/114\/revisions"}],"predecessor-version":[{"id":713,"href":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/index.php?rest_route=\/wp\/v2\/pages\/114\/revisions\/713"}],"wp:attachment":[{"href":"https:\/\/projects.lsv.ens-paris-saclay.fr\/orchidsdoc\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=114"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}