feat: transition events to OCSF format #2197
Description
Is your feature request related to a problem?
we're currently transforming logs/traps/etc into cloudevents, need to get these in OCSF format
- update zenrules
- update zenrules in KV for syslog
- zen rule for SNMP traps to OCSF
- zen rules for falco, trivvy events (planned)
Describe the solution you'd like
Events typically flow in through collectors like snmp trapd, flowgger, netflow, falco (planned), trivvy (planned) and into the NATS JetStream message broker.
We generally use the zen-engine for ETL to convert these mesages to cloud events, need to switch this up to OCSF event format
Describe alternatives you've considered
A clear and concise description of any alternative solutions or features you've considered.
Additional context
Add any other context or screenshots about the feature request here.