vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-04-30 16:09:32 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Changed lateral movement description (#5517)

Browse source
This commit is contained in:
MatteoBiscosi 2021-06-18 10:06:45 +02:00
parent 318f217c4f
commit dd3a038a0f
2 changed files with 4 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

18
scripts/lua/modules/alert_definitions/flow/alert_lateral_movement.lua
View file

@ -40,31 +40,19 @@ end
-- @param alert_type_params Table `alert_type_params` as built in the `:init` method
-- @return A human-readable string
function alert_lateral_movement.format(ifid, alert, alert_type_params)
local vlan_id = tonumber(alert.vlan_id) or 0
local client = {host = alert.cli_ip, vlan = vlan_id}
local server = {host = alert.srv_ip, vlan = vlan_id}
-- Extracting info field
local info = ""
if alert.json then
info = json.decode(alert["json"])
if info["info"] then
info = info["info"]
info = "[" .. info["info"] .. "]"
else
info = ""
end
end
local rsp = hostinfo2detailshref(client, nil, hostinfo2label(client))..
" <i class=\"fas fa-fw fa-exchange-alt fa-lg\" aria-hidden=\"true\" data-original-title=\"\" title=\"\"></i> " ..
hostinfo2detailshref(server, nil, hostinfo2label(server))
rsp = rsp .. " ["..interface.getnDPIProtoName(tonumber(alert.l7_proto)) or alert.l7_proto .."]"
if not isEmptyString(info) then
rsp = rsp .. "[" .. info .. "]"
end
return(rsp)
return(i18n("alerts_dashboard.lateral_movement_descr", { info = info }))
end
-- #######################################################