vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-05 19:15:03 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 4

Reworks suspicious file transfers

Browse source
This commit is contained in:
Simone Mainardi 2020-05-13 19:38:24 +02:00
parent 5ca25a30e4
commit c543df45f9
6 changed files with 15 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

6
scripts/plugins/flow_risks/user_scripts/flow/flow_risks.lua
View file

@ -33,10 +33,10 @@ function script.hooks.protocolDetected(now)
local url = http_info["protos.http.last_url"] or ""
-- NDPI_BINARY_APPLICATION_TRANSFER
-- scripts/lua/modules/alert_definitions/alert_binary_application_transfer.lua
-- scripts/lua/modules/alert_definitions/alert_suspicious_file_transfer.lua
flow.triggerStatus(
flow_consts.status_types.status_binary_application_transfer.create(
flow_consts.status_types.status_binary_application_transfer.alert_severity,
flow_consts.status_types.status_suspicious_file_transfer.create(
flow_consts.status_types.status_suspicious_file_transfer.alert_severity,
http_info
),
200, -- flow_score