I am aware that there are many ways to send bro logs to syslog/SIEM/etc., but as far as I understand they’re all relying on reading/tailing the log files created by bro then send them over to their destination (e.g. logstash & NiFi).
Is it possible to send logs over TCP/UDP without having them written to disk to be read by a third party app?
Thanks.