Filters markdown

2014-07-29 13:40:45 -04:00
parent 37964aba54
commit f4b1fd0664
1 changed files with 28 additions and 0 deletions
--- a/Filters.md
+++ b/Filters.md
@@ -0,0 +1,28 @@
+# Filters
+The following filters are provided.
+
+
+| Filter            | Description                                                             
+| :---------------- |:----------------------------------------------------------------------- 
+| *[grok][1]*            |Similar to the logstash grok filter                                                  
+| *date*            |Format of the "Data" binary field.                                       
+| *mutate*          |Behavior when event messages or event category names cannot be resolved.                             
+Example Input:
+```json
+{
+    "TimberWinR": {
+        "Inputs": {
+            "WindowsEvents": [
+                {
+                    "source": "System,Application",
+                    "binaryFormat": "PRINT",
+                    "resolveSIDS": true
+                }
+            ]
+		}
+	}
+}
+```
+
+
+  [1]: http://logstash.net/docs/1.4.2/filters/grok