zimmerle · January 27, 2016 13:01
diff --git a/Auditlog JSON in v3 b/Auditlog JSON in v3
 {
    "transaction": {
        "client_ip": "127.0.0.1",
        "time_stamp": "Thu Jan 21 18:52:52 2016",
        "server_id": "a8c4ef34e653442d3968e7368748b81a9a6fa4c1",
        "client_port": 52026,
        "host_ip": "127.0.0.1",
        "host_port": 80,
        "id": "145341317239.923407",
        "request": {
            "protocol": "GET",
            "http_version": 1.0,
            "uri": "/webcgi/mail",
            "body": "",
            "headers": {
                "Connection": "Keep-Alive",
                "User-Agent": "Mozilla/5.00 (Nikto/2.1.5) (Evasions:None) (Test:000438)",
                "Host": "localhost"
            }
        },
        "response": {
            "http_code": 404,
            "headers": {

            }
        },
        "producer": {
            "modsecurity": "ModSecurity v3.0.0-alpha (Linux)",
            "connector": "ModSecurity-nginx v0.0.2-alpha",
            "secrules_engine": "Enabled",
            "components": [

            ]
        },
        "messages": [
            {
                "message": "Request Containing Content, but Missing Content-Type header",
                "produced_by": {
                    "ruleId": "960904",
                    "file": "/etc/modsecurity/owasp-v2/base_rules/modsecurity_crs_21_protocol_anomalies.conf",
                    "lineNumber": "74",
                    "data": "??",
                    "serverity": "??",
                    "ver": "??",
                    "tags": [

                    ],
                    "maturity": "0",
                    "accuracy": "0"
                }
            },
            {
                "message": "RBL Match for SPAM Source",
                "produced_by": {
                    "ruleId": "981138",
                    "file": "/etc/modsecurity/owasp-v2/optional_rules/modsecurity_crs_42_comment_spam.conf",
                    "lineNumber": "20",
                    "data": "??",
                    "serverity": "??",
                    "ver": "??",
                    "tags": [

                    ],
                    "maturity": "0",
                    "accuracy": "0"
                }
            },
            {
                "message": "Request Indicates a Security Scanner Scanned the Site",
                "produced_by": {
                    "ruleId": "990002",
                    "file": "/etc/modsecurity/owasp-v2/base_rules/modsecurity_crs_35_bad_robots.conf",
                    "lineNumber": "248",
                    "data": "??",
                    "serverity": "??",
                    "ver": "??",
                    "tags": [

                    ],
                    "maturity": "0",
                    "accuracy": "0"
                }
            },
            {
                "message": "Rogue web site crawler",
                "produced_by": {
                    "ruleId": "990012",
                    "file": "/etc/modsecurity/owasp-v2/base_rules/modsecurity_crs_35_bad_robots.conf",
                    "lineNumber": "24",
                    "data": "??",
                    "serverity": "??",
                    "ver": "??",
                    "tags": [

                    ],
                    "maturity": "0",
                    "accuracy": "0"
                }
            }
        ]
    }
 }
	{
	"transaction": {
	"client_ip": "127.0.0.1",
	"time_stamp": "Thu Jan 21 18:52:52 2016",
	"server_id": "a8c4ef34e653442d3968e7368748b81a9a6fa4c1",
	"client_port": 52026,
	"host_ip": "127.0.0.1",
	"host_port": 80,
	"id": "145341317239.923407",
	"request": {
	"protocol": "GET",
	"http_version": 1.0,
	"uri": "/webcgi/mail",
	"body": "",
	"headers": {
	"Connection": "Keep-Alive",
	"User-Agent": "Mozilla/5.00 (Nikto/2.1.5) (Evasions:None) (Test:000438)",
	"Host": "localhost"
	}
	},
	"response": {
	"http_code": 404,
	"headers": {

	}
	},
	"producer": {
	"modsecurity": "ModSecurity v3.0.0-alpha (Linux)",
	"connector": "ModSecurity-nginx v0.0.2-alpha",
	"secrules_engine": "Enabled",
	"components": [

	]
	},
	"messages": [
	{
	"message": "Request Containing Content, but Missing Content-Type header",
	"produced_by": {
	"ruleId": "960904",
	"file": "/etc/modsecurity/owasp-v2/base_rules/modsecurity_crs_21_protocol_anomalies.conf",
	"lineNumber": "74",
	"data": "??",
	"serverity": "??",
	"ver": "??",
	"tags": [

	],
	"maturity": "0",
	"accuracy": "0"
	}
	},
	{
	"message": "RBL Match for SPAM Source",
	"produced_by": {
	"ruleId": "981138",
	"file": "/etc/modsecurity/owasp-v2/optional_rules/modsecurity_crs_42_comment_spam.conf",
	"lineNumber": "20",
	"data": "??",
	"serverity": "??",
	"ver": "??",
	"tags": [

	],
	"maturity": "0",
	"accuracy": "0"
	}
	},
	{
	"message": "Request Indicates a Security Scanner Scanned the Site",
	"produced_by": {
	"ruleId": "990002",
	"file": "/etc/modsecurity/owasp-v2/base_rules/modsecurity_crs_35_bad_robots.conf",
	"lineNumber": "248",
	"data": "??",
	"serverity": "??",
	"ver": "??",
	"tags": [

	],
	"maturity": "0",
	"accuracy": "0"
	}
	},
	{
	"message": "Rogue web site crawler",
	"produced_by": {
	"ruleId": "990012",
	"file": "/etc/modsecurity/owasp-v2/base_rules/modsecurity_crs_35_bad_robots.conf",
	"lineNumber": "24",
	"data": "??",
	"serverity": "??",
	"ver": "??",
	"tags": [

	],
	"maturity": "0",
	"accuracy": "0"
	}
	}
	]
	}
	}