vrr/ntopng
2
0
Fork 0
mirror of https://github.com/ntop/ntopng.git synced 2026-05-01 00:19:33 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3

Implements risk-based filtering of flow alerts

Browse source
This commit is contained in:
Simone Mainardi 2021-02-16 15:25:20 +01:00
parent c8a7232ef9
commit f4dff6f2e7
8 changed files with 60 additions and 23 deletions
Download patch file Download diff file Expand all files Collapse all files

5
scripts/plugins/alerts/security/flow_risks/user_scripts/flow/flow_risks.lua
View file

@ -16,6 +16,11 @@ local script = {
-- Priority
prio = -20, -- Lower priority (executed after) than default 0 priority
-- For a full list check "available_subdir.flow.available_fields" in user_scripts.lua
filter = {
default_fields = { "srv_addr", "l7_proto", "flow_risk_bitmap" }
},
-- NOTE: hooks defined below
hooks = {},