vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-05 10:41:34 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Refactors alert_severities into an independend Lua module

Browse source
This commit is contained in:
Simone Mainardi 2020-11-30 15:28:17 +01:00
parent e683509dec
commit b3dc39c641
109 changed files with 317 additions and 264 deletions
Download patch file Download diff file Expand all files Collapse all files

4
scripts/plugins/alerts/security/flow_risks/modules/ndpi_binary_application_transfer_handler.lua
View file

@ -4,7 +4,7 @@
local alerts_api = require "alerts_api"
local flow_consts = require("flow_consts")
local alert_consts = require("alert_consts")
local alert_severities = require "alert_severities"
-- #################################################################
@ -25,7 +25,7 @@ function handler.handle_risk(risk_id, flow_score, cli_score, srv_score)
http_info
)
alerts_api.trigger_status(suspicious_file_transfer_type, alert_consts.alert_severities.error, cli_score or 0, srv_score or 0, flow_score or 0)
alerts_api.trigger_status(suspicious_file_transfer_type, alert_severities.error, cli_score or 0, srv_score or 0, flow_score or 0)
end

4
scripts/plugins/alerts/security/flow_risks/modules/ndpi_known_protocol_on_non_standard_port_handler.lua
View file

@ -4,7 +4,7 @@
local alerts_api = require "alerts_api"
local flow_consts = require("flow_consts")
local alert_consts = require("alert_consts")
local alert_severities = require "alert_severities"
-- #################################################################
@ -21,7 +21,7 @@ function handler.handle_risk(risk_id, flow_score, cli_score, srv_score)
flow.getInfo()
)
alerts_api.trigger_status(known_proto_on_non_std_port_type, alert_consts.alert_severities.info, cli_score or 0, srv_score or 0, flow_score or 0)
alerts_api.trigger_status(known_proto_on_non_std_port_type, alert_severities.info, cli_score or 0, srv_score or 0, flow_score or 0)
end

4
scripts/plugins/alerts/security/flow_risks/modules/risk_handler.lua
View file

@ -4,7 +4,7 @@
local alerts_api = require "alerts_api"
local flow_consts = require("flow_consts")
local alert_consts = require("alert_consts")
local alert_severities = require "alert_severities"
-- #################################################################
@ -27,7 +27,7 @@ function handler.handle_risk(risk_id, flow_score, cli_score, srv_score)
risk_id
)
alerts_api.trigger_status(flow_risk_type, alert_consts.alert_severities.warning, cli_score or 0, srv_score or 0, flow_score or 0)
alerts_api.trigger_status(flow_risk_type, alert_severities.warning, cli_score or 0, srv_score or 0, flow_score or 0)
end