CSEC_PUBLIC/hayabusa
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Merge pull request #492 from Yamato-Security/491-output_informational_level_to_info

Browse Source 
changed output informational level to info
This commit is contained in:
Yamato Security
2022-04-15 07:18:40 +09:00
committed by GitHub
parent d4aec68d3b 708427c379
commit c030144bcb
2 changed files with 7 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
rules

Submodule rules updated: 4f1ad77b02...feac3a4b6f

8
src/afterfact.rs
View File

@@ -142,6 +142,10 @@ fn emit_csv<W: std::io::Write>(
for (time, detect_infos) in messages.iter() {
for detect_info in detect_infos {
let mut level = detect_info.level.to_string();
if level == "informational" {
level = "info".to_string();
}
if displayflag {
let colors = color_map
.as_ref()
@@ -160,7 +164,7 @@ fn emit_csv<W: std::io::Write>(
let dispformat = DisplayFormat {
timestamp: &_format_cell(&format_time(time), ColPos::First, colors),
level: &_format_cell(&detect_info.level, ColPos::Other, colors),
level: &_format_cell(&level, ColPos::Other, colors),
computer: &_format_cell(&detect_info.computername, ColPos::Other, colors),
event_i_d: &_format_cell(&detect_info.eventid, ColPos::Other, colors),
rule_title: &_format_cell(&detect_info.alert, ColPos::Other, colors),
@@ -172,7 +176,7 @@ fn emit_csv<W: std::io::Write>(
// csv出力時フォーマット
wtr.serialize(CsvFormat {
timestamp: &format_time(time),
level: &detect_info.level,
level: &level,
computer: &detect_info.computername,
event_i_d: &detect_info.eventid,
mitre_attack: &detect_info.tag_info,