Eve_archived.json file

ELS_Forum · June 4, 2021, 8:00pm

I cannot interact with the eve_archived.json file. It is in the directory:

But when I run the command ‘less eve_archived.json’ I get nothing but a blank screen:

image.png.4e373c01c4b69dcb021c7687e9bf8615

I can access the eve.json file:

image.png.3edb19b083b9d466859174312ec0dbb8

Any ideas?

Edit:

I’m unable to run the subsequent commands as well:

cat eve_archived.json | jq -c 'select(.event_type == "alert")'

cat eve_archived.json | jq -c 'select(.event_type == "tls")'

I am using a Windows 10 machine and Putty. Do I need to install EveBox and jq for this to work?

Original post by bjadamsjr

Please always mention the exact lab when posting.

You need to install nothing.

A new file with a similar name has been created by the system.

The filename is now eve_archived.json.1

Original reply by Dimitrios

Topic		Replies	Views
Help Please! (eJPT) Penetration Testing Student (SP) red , security , lab	1	284	November 30, 2022
Minjector Process Hollowing Threat Hunting Professional blue	0	216	December 22, 2021
Ewptx csrf lab referer header Advanced Penetration Testing red , ine , security , lab	1	231	June 27, 2023
Problem in the xss labs Advanced Web Application Penetration Testing red , lab	3	341	August 17, 2021
EMAPT - Invalid File Error when i submit the POC Mobile Application Penetration Testing red , ine , security , exam	1	102	March 12, 2024