CSEC_PUBLIC/hayabusa
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

fix

Browse Source
This commit is contained in:
siamease
2020-10-25 02:56:19 +09:00
parent 816189b29d
commit b83fc1c5f5
1 changed files with 8 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
src/detections/sysmon.rs
View File

@@ -22,8 +22,8 @@ impl Sysmon {
_system: &event::System,
event_data: HashMap<String, String>,
) {
&self.check_command_lines(&event_id,&event_data);
&self.check_for_unsigned_files(&event_id,&event_data);
&self.check_command_lines(&event_id, &event_data);
&self.check_for_unsigned_files(&event_id, &event_data);
}
fn check_command_lines(&mut self, event_id: &String, event_data: &HashMap<String, String>) {
@@ -43,7 +43,11 @@ impl Sysmon {
}
}
fn check_for_unsigned_files(&mut self, event_id: &String, event_data: &HashMap<String, String>) {
fn check_for_unsigned_files(
&mut self,
event_id: &String,
event_data: &HashMap<String, String>,
) {
if event_id != "7" {
return;
}
@@ -76,6 +80,6 @@ mod tests {
#[test]
fn test_skelton_hit() {
assert_eq!(1,1);
assert_eq!(1, 1);
}
}