Skip to content

Commit 8d6cb76

Browse files
committed
up
1 parent e7c3843 commit 8d6cb76

File tree

1 file changed

+15
-3
lines changed

1 file changed

+15
-3
lines changed

crowdsec-docs/docs/configuration/crowdsec_configuration.md

Lines changed: 15 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -50,27 +50,39 @@ Enabled alert context for Local API and Log Processor.
5050

5151
### `/etc/crowdsec/hub/`
5252

53-
Local Hub Mirror.
53+
Local Hub Mirror. Not itended to be modified by the user. Do not put custom scenarios/parsers here.
5454

5555
### `/etc/crowdsec/local_api_credentials.yaml` and `/etc/crowdsec/online_api_credentials.yaml`
5656

5757
Credentials for Local API and Central API.
5858

5959
### `/etc/crowdsec/parsers`
6060

61-
Contains all parsers enabled on the Log Processor, organised in stages:
61+
Contains all parsers enabled on the Log Processor, including local parsers, organised in stages:
6262
- `/etc/crowdsec/parsers/s00-raw/*.yaml` : parsers for based formats such as syslog.
6363
- `/etc/crowdsec/parsers/s01-parse/*.yaml` : service specific parsers such as nginx or ssh.
6464
- `/etc/crowdsec/parsers/s02-enrich/*.yaml` : enrichment parsers and whitelists.
6565

66+
6667
### `/etc/crowdsec/scenarios`
6768

68-
Contains all scenarios enabled on the Log Processor.
69+
Contains all scenarios enabled on the Log Processor, including local scenarios.
6970

7071
### `/etc/crowdsec/profiles.yaml`
7172

7273
Contains profiles used by Local API to eventually turn alerts into decisions or dispatch them to notification plugins.
7374

75+
### `/etc/crowdsec/notifications/*.yaml`
76+
77+
Contains notification plugins configuration (slack, email, splunk, etc.)
78+
79+
### `/etc/crowdsec/appsec-configs/*.yaml`
80+
81+
Contains AppSec (WAF) configuration indicating which rules or loaded in `inband` and `outofband` files, as well as eventual `hooks` configuration.
82+
83+
### `/etc/crowdsec/appsec-rules/*.yaml`
84+
85+
Contains individual AppSec (WAF) rules loaded by `appsec-configs` files.
7486

7587
## Environment variables
7688

0 commit comments

Comments
 (0)