modifier

package

v5.0.8 Latest Latest Go to latest Published: Aug 14, 2024 License: GPL-3.0 Imports: 13 Imported by: 0

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/activecm/rita

Links

Open Source Insights

Documentation ¶

Index ¶

Constants
type Modifier
- func NewModifier(db *database.DB, cfg *config.Config, importID util.FixedString, ...) (*Modifier, error)
- func (modifier *Modifier) Modify() error
type ThreatModifier

Constants ¶

View Source

const MIME_TYPE_MISMATCH_MODIFIER_NAME = "mime_type_mismatch"

View Source

const RARE_SIGNATURE_MODIFIER_NAME = "rare_signature"

Variables ¶

This section is empty.

Functions ¶

This section is empty.

Types ¶

type Modifier ¶

type Modifier struct {
	Database        *database.DB
	ImportID        util.FixedString
	Config          *config.Config
	ModifierWorkers int
	// contains filtered or unexported fields
}

func NewModifier ¶

func NewModifier(db *database.DB, cfg *config.Config, importID util.FixedString, minTS time.Time) (*Modifier, error)

func (*Modifier) Modify ¶

func (modifier *Modifier) Modify() error

type ThreatModifier ¶

type ThreatModifier struct {
	AnalyzedAt    int64            `ch:"analyzed_at"`
	ImportID      util.FixedString `ch:"import_id"`
	Hash          util.FixedString `ch:"hash"`
	Src           net.IP           `ch:"src"`
	Dst           net.IP           `ch:"dst"`
	SrcNUID       uuid.UUID        `ch:"src_nuid"`
	DstNUID       uuid.UUID        `ch:"dst_nuid"`
	FQDN          string           `ch:"fqdn"`
	LastSeen      time.Time        `ch:"last_seen"`
	ModifierName  string           `ch:"modifier_name"`
	ModifierScore float32          `ch:"modifier_score"`
}

Source Files ¶

View all Source files

modifier.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL