cscli parsers install crowdsecurity/naxsi-logs1#let's try to post-process nginx error log to have naxsi pattern2filter: "evt.Meta.log_type == 'http_error-log' && evt.Parsed.program == 'nginx'"3description: "Enrich logs if its from NAXSI"4name: crowdsecurity/naxsi-logs5grok:6 name: "NAXSI_EXLOG"7 apply_on: message8statics:9 - target: evt.Meta.log_type10 value: waf_naxsi-log11 - meta: source_ip12 expression: "evt.Parsed.naxsi_src_ip"13 - meta: http_path14 expression: "evt.Parsed.http_path"15 - meta: dest_ip16 expression: "evt.Parsed.target_ip"