array (
  'index' => 'graylog_142',
  'message' => 'GPL ATTACK_RESPONSE id check returned root',
  'fields' => 
  array (
    'filebeat_alert_severity' => 2,
    'filebeat_dest_ip' => '10.3.35.50',
    'gl2_remote_ip' => '81.19.3.153',
    'inputs' => 'Suricata Beats',
    'gl2_remote_port' => 39232,
    'filebeat_alert_metadata_created_at' => 
    array (
      0 => '2010_09_23',
    ),
    'gl2_source_input' => '65434c9a29308a4cf36ccc5f',
    'filebeat_@metadata_beat' => 'filebeat',
    'filebeat_files_0_sid' => 
    array (
    ),
    'filebeat_alert_metadata_updated_at' => 
    array (
      0 => '2010_09_23',
    ),
    'filebeat_@timestamp' => '2023-12-09T18:58:27.871Z',
    'filebeat_agent_type' => 'filebeat',
    'filebeat_http_url' => '/uid/index.html',
    'filebeat_host_name' => 'SuricataManesova',
    'filebeat_alert_gid' => 1,
    'filebeat_http_http_content_type' => 'text/html',
    'filebeat_in_iface' => 'eth0',
    'gl2_source_node' => '92abe3e6-01ff-4554-9d59-5c412278c40b',
    'filebeat_alert_action' => 'allowed',
    'filebeat_proto' => 'TCP',
    'filebeat_agent_version' => '8.10.4',
    'filebeat_agent_ephemeral_id' => '7a21aaa4-d742-4877-a060-105d5af84121',
    'filebeat_alert_signature' => 'GPL ATTACK_RESPONSE id check returned root',
    'filebeat_dest_port' => 59866,
    'gl2_accounted_message_size' => 1904,
    'gl2_source_collector' => '8d942258-40f3-4c4c-9352-c4f0c1544b7e',
    'filebeat_input_type' => 'log',
    'filebeat_app_proto' => 'http',
    'gl2_message_id' => '01HH7Z3YWZ00178M5QN6Z4WBGQ',
    'filebeat_http_http_method' => 'GET',
    'filebeat_files_0_state' => 'CLOSED',
    'filebeat_ecs_version' => '8.0.0',
    'filebeat_collector_node_id' => 'Suricata Mánesova',
    'filebeat_http_length' => 39,
    'filebeat_timestamp' => '2023-12-09T19:58:21.898226+0100',
    'filebeat_agent_id' => '80b5b6d3-82ed-424b-a018-6d84fde07da0',
    'filebeat_alert_category' => 'Potentially Bad Traffic',
    'filebeat_log_offset' => 52951923,
    'filebeat_agent_name' => 'SuricataManesova',
    'filebeat_flow_pkts_toserver' => 5,
    'filebeat_files_0_tx_id' => 0,
    'filebeat_files_0_stored' => false,
    'filebeat_flow_pkts_toclient' => 4,
    'beats_type' => 'filebeat',
    'filebeat_src_ip' => '65.9.95.74',
    'filebeat_files_0_gaps' => false,
    'filebeat_flow_bytes_toclient' => 810,
    'filebeat_@metadata_version' => '8.10.4',
    'filebeat_src_port' => 80,
    'filebeat_http_hostname' => 'testmynids.org',
    'filebeat_flow_start' => '2023-12-09T19:58:21.824444+0100',
    'filebeat_files' => 
    array (
    ),
    'filebeat_alert_signature_id' => 2100498,
    'filebeat_http_status' => 200,
    'filebeat_flow_id' => 1091010693010556,
    'filebeat_flow_bytes_toserver' => 430,
    'filebeat_http_protocol' => 'HTTP/1.1',
    'filebeat_@metadata_type' => '_doc',
    'filebeat_event_type' => 'alert',
    'filebeat_http_http_user_agent' => 'curl/7.88.1',
    'filebeat_alert_rev' => 7,
    'filebeat_log_file_path' => '/var/log/suricata/eve.json',
    'filebeat_files_0_size' => 39,
    'filebeat_files_0_filename' => '/uid/index.html',
  ),
  'id' => 'f08fdae2-96c4-11ee-9d8d-12c452d13b54',
  'source' => 'SuricataManesova',
  'timestamp' => '2023-12-09T18:58:27.871Z',
  'stream_ids' => 
  array (
    0 => '6562234198f7c9257e94c509',
  ),
)