vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-29 07:29:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Fix formatMaliciousSignature with no flowstatus_info

Browse source
This commit is contained in:
Alfredo Cardigliano 2019-09-09 11:21:26 +02:00
parent eb1ab32e70
commit 0d38479297
1 changed files with 11 additions and 4 deletions
Download patch file Download diff file Expand all files Collapse all files

15
scripts/lua/modules/lua_utils.lua
View file

@ -2522,7 +2522,7 @@ function formatLongLivedFlowAlert(flowstatus_info)
threshold = flowstatus_info["longlived.threshold"]
end
local res = string.format("%s<sup><i class='fa fa-info-circle' aria-hidden='true' title='"..i18n("flow_details.longlived_flow_descr").."'></i></sup>", res)
res = string.format("%s<sup><i class='fa fa-info-circle' aria-hidden='true' title='"..i18n("flow_details.longlived_flow_descr").."'></i></sup>", res)
if threshold ~= "" then
res = string.format("%s [%s]", res, i18n("flow_details.longlived_exceeded", {amount = secondsToTime(threshold)}))
@ -2534,21 +2534,28 @@ end
-- ###############################################
function formatMaliciousSignature(flowstatus_info)
local res = i18n("alerts_dashboard.malicious_signature_detected")
if not flowstatus_info then
return res
end
if(flowstatus_info.ja3_signature ~= nil) then
return(i18n("flow_details.malicious_ja3_signature", {
res = i18n("flow_details.malicious_ja3_signature", {
signature = flowstatus_info.ja3_signature,
url = "https://sslbl.abuse.ch/ja3-fingerprints/" .. flowstatus_info.ja3_signature,
icon = " <i class=\"fa fa-external-link\"></i>",
}))
})
end
return(i18n("alerts_dashboard.malicious_signature_detected"))
return res
end
-- ###############################################
function formatBlacklistedFlow(status, flowstatus_info, alert)
local who = {}
if not flowstatus_info then
return i18n("flow_details.blacklisted_flow")
end