Small utility for automatically generating Lua sandbox scripts to parse Bro logs.
This go program will parse a bro log header and generate a Lua script that can be used with Heka to parse your logs.
Binaries for Windows and Linux are available in the releases.
Special thanks to Michal Purzynski and MozDef for the example scripts that helped a ton.
You can find the examples I based my work off of at: https://github.com/jeffbryner/MozDef/tree/master/examples/heka-lua-bro
Requirements: golang
Once go is installed, simply run the following:
go build bro2heka.go
Afterwards, it should be ready to go.