log discarded suricata flows

stratosphereips · Oct 5, 2023 · 39f80d5 · 39f80d5
1 parent 5948081
commit 39f80d5
Show file tree

Hide file tree

Showing 2 changed files with 2 additions and 1 deletion.
diff --git a/database/sqlite_db.py b/database/sqlite_db.py
@@ -213,7 +213,6 @@ def store_flow(self, flow: dict, tool: str):
                 query = f"UPDATE labels_flow_by_flow SET {label_col} = \"{label}\" WHERE aid = \"{aid}\";"
                 self.execute(query)
             else:
-                print(f"@@@@@@@@@@@@@@@@ discarded suricata flow: {flow} original_ts: {flow.get('original_ts','')}")
                 self.increase_discarded_flows(tool)
                 return False
         return True

diff --git a/parsers/suricata.py b/parsers/suricata.py
@@ -126,6 +126,8 @@ def parse(self):
 
                     if 'malicious' in label.lower():
                         self.label_tw(timestamp, line['src_ip'], 'malicious')
+                else:
+                    self.log(f"@@@@@@@@@@@@@@@@ discarded suricata flow: {flow} original_ts: {flow.get('original_ts', '')}",'')
 
             self.print_stats()