From d372ef452d643308081452799a7cb83e32605e23 Mon Sep 17 00:00:00 2001
From: richiercyrus <richiercyrus@users.noreply.github.com>
Date: Tue, 8 Jan 2019 15:38:57 -0800
Subject: [PATCH] Troubleshooting the output file.

---
 .../helk-logstash/pipeline/8116-osquery-filter.conf  | 12 ------------
 .../helk-logstash/pipeline/9958-osquery-output.conf  |  4 ++++
 2 files changed, 4 insertions(+), 12 deletions(-)
 delete mode 100644 docker/helk-logstash/pipeline/8116-osquery-filter.conf

diff --git a/docker/helk-logstash/pipeline/8116-osquery-filter.conf b/docker/helk-logstash/pipeline/8116-osquery-filter.conf
deleted file mode 100644
index 23209e4..0000000
--- a/docker/helk-logstash/pipeline/8116-osquery-filter.conf
+++ /dev/null
@@ -1,12 +0,0 @@
-# HELK osquery filter conf file
-# HELK build Stage: Alpha
-# Author: Richie Cyrus (@rrcyrus)
-# License: GPL-3.0
-
-filter {
-  if [source] == "/var/log/osquery/osqueryd.results.log"{
-    json {
-        source => "message"
-    }
-  }
-}
diff --git a/docker/helk-logstash/pipeline/9958-osquery-output.conf b/docker/helk-logstash/pipeline/9958-osquery-output.conf
index e5abe24..620bf0c 100644
--- a/docker/helk-logstash/pipeline/9958-osquery-output.conf
+++ b/docker/helk-logstash/pipeline/9958-osquery-output.conf
@@ -13,3 +13,7 @@ output {
     }
   }
 }
+
+
+
+