Documentation ¶
Index ¶
- func ApplySpecialTransformations(ord_map *ordereddict.Dict, ...)
- func ConvertAllTypesToString(val interface{}, display_as string) string
- func ExtraFixField(Ordered_fields_enhanced map[string]common.SingleField, key string, ...) string
- func ExtractAttribs(ev_map *ordereddict.Dict, attrib_extraction []common.ExtractedFunction, ...) *ordereddict.Dict
- func GetChannel(ev_map *ordereddict.Dict) string
- func GetCorrelationActivityID(ev_map *ordereddict.Dict) string
- func GetCurrentComputer(ev_map *ordereddict.Dict) string
- func GetEID(ev_map *ordereddict.Dict) string
- func GetEventRecordID(ev_map *ordereddict.Dict) string
- func GetEventRecordIDasNumber(ev_map *ordereddict.Dict) uint64
- func GetKeywords(ev_map *ordereddict.Dict) string
- func GetOriginalDisplayValueForMapperBitwiseToString(current_params common.Params, nr int64) string
- func GetOriginalDisplayValueForMapperNumberToString(current_params common.Params, value string) string
- func GetOriginalDisplayValueForMapperStringToString(current_params common.Params, value string) string
- func GetProvider(ev_map *ordereddict.Dict) string
- func GetProviderGUID(ev_map *ordereddict.Dict) string
- func GetProviderName(ev_map *ordereddict.Dict) string
- func GetRawSystemTime(ev_map *ordereddict.Dict) time.Time
- func GetSecurityUserID(ev_map *ordereddict.Dict) string
- func GetSystemProcessID(ev_map *ordereddict.Dict) string
- func GetSystemTime(ev_map *ordereddict.Dict, highprecisioneventtime string) string
- func LogSingleEventDetailedError(ev_map *ordereddict.Dict, error_message string)
- func MapAttribToOrderedMap(attrib_map *ordereddict.Dict, ord_map *ordereddict.Dict, ...)
- func ReadSpecialOptionForKey(Ordered_fields_enhanced map[string]common.SingleField, key string, ...) string
- func ResolveDoubleQuotesInPlace(double_quotes map[string]string, SIDList map[string]string, opt_v string, ...) string
- func ResolveForMapperBitwiseToString(VariousMappers map[string]common.Params, map_name string, value string, ...) string
- func ResolveForMapperNumberToString(VariousMappers map[string]common.Params, map_name string, value string, ...) string
- func ResolveForMapperStringToString(VariousMappers map[string]common.Params, map_name string, value string, ...) string
- func ResolveMappersAndDoubleQuotesInPlace(ord_map *ordereddict.Dict, ...)
- type EventMap
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func ApplySpecialTransformations ¶
func ApplySpecialTransformations(ord_map *ordereddict.Dict, Field_extra_transformations []common.Layer2FieldExtraTransformations)
func ConvertAllTypesToString ¶
func ExtraFixField ¶
func ExtractAttribs ¶
func ExtractAttribs(ev_map *ordereddict.Dict, attrib_extraction []common.ExtractedFunction, l1mode bool) *ordereddict.Dict
func GetChannel ¶
func GetChannel(ev_map *ordereddict.Dict) string
func GetCorrelationActivityID ¶
func GetCorrelationActivityID(ev_map *ordereddict.Dict) string
func GetCurrentComputer ¶
func GetCurrentComputer(ev_map *ordereddict.Dict) string
func GetEID ¶
func GetEID(ev_map *ordereddict.Dict) string
func GetEventRecordID ¶
func GetEventRecordID(ev_map *ordereddict.Dict) string
func GetEventRecordIDasNumber ¶
func GetEventRecordIDasNumber(ev_map *ordereddict.Dict) uint64
func GetKeywords ¶
func GetKeywords(ev_map *ordereddict.Dict) string
func GetProvider ¶
func GetProvider(ev_map *ordereddict.Dict) string
func GetProviderGUID ¶
func GetProviderGUID(ev_map *ordereddict.Dict) string
func GetProviderName ¶
func GetProviderName(ev_map *ordereddict.Dict) string
func GetRawSystemTime ¶
func GetRawSystemTime(ev_map *ordereddict.Dict) time.Time
func GetSecurityUserID ¶
func GetSecurityUserID(ev_map *ordereddict.Dict) string
func GetSystemProcessID ¶
func GetSystemProcessID(ev_map *ordereddict.Dict) string
func GetSystemTime ¶
func GetSystemTime(ev_map *ordereddict.Dict, highprecisioneventtime string) string
func LogSingleEventDetailedError ¶
func LogSingleEventDetailedError(ev_map *ordereddict.Dict, error_message string)
func MapAttribToOrderedMap ¶
func MapAttribToOrderedMap(attrib_map *ordereddict.Dict, ord_map *ordereddict.Dict, Fields_remap *ordereddict.Dict, Ordered_fields_enhanced map[string]common.SingleField)
func ReadSpecialOptionForKey ¶
Types ¶
type EventMap ¶
type EventMap = ordereddict.Dict
Click to show internal directories.
Click to hide internal directories.