Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- so16@so16:~$ eql query -f conn.mod.json --format jsonl "any where id_orig_h == '192_168_4_57'"
- Traceback (most recent call last):
- File "/home/so16/.local/bin/eql", line 11, in <module>
- sys.exit(main())
- File "/home/so16/.local/lib/python2.7/site-packages/eql/main.py", line 90, in main
- parsed.func(parsed)
- File "/home/so16/.local/lib/python2.7/site-packages/eql/main.py", line 60, in query
- engine.stream_events(stream, finalize=False)
- File "/home/so16/.local/lib/python2.7/site-packages/eql/engines/native.py", line 1205, in stream_events
- for event in events:
- File "/home/so16/.local/lib/python2.7/site-packages/eql/utils.py", line 172, in stream_file_events
- for event in stream_events(handle, file_format=file_format):
- File "/home/so16/.local/lib/python2.7/site-packages/eql/utils.py", line 146, in stream_json_lines
- yield json.loads(line)
- File "/usr/lib/python2.7/json/__init__.py", line 339, in loads
- return _default_decoder.decode(s)
- File "/usr/lib/python2.7/json/decoder.py", line 364, in decode
- obj, end = self.raw_decode(s, idx=_w(s, 0).end())
- File "/usr/lib/python2.7/json/decoder.py", line 380, in raw_decode
- obj, end = self.scan_once(s, idx)
- ValueError: Expecting ',' delimiter: line 1 column 192 (char 191)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
