CSEC_PUBLIC/hayabusa
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

added feature of tag output reducing to agg condition #477 (#488)

Browse Source
This commit is contained in:
DustInDark
2022-04-14 21:32:22 +09:00
committed by GitHub
parent 9da46b90a8
commit d4aec68d3b
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
src/detections/detection.rs
View File

@@ -237,7 +237,8 @@ impl Detection {
.as_vec() .as_vec()
.unwrap_or(&Vec::default()) .unwrap_or(&Vec::default())
.iter() .iter()
.map(|info| info.as_str().unwrap_or("").replace("attack.", "")) .filter_map(|info| TAGS_CONFIG.get(info.as_str().unwrap_or(&String::default())))
.map(|str| str.to_owned())
.collect(); .collect();
let output = Detection::create_count_output(rule, &agg_result); let output = Detection::create_count_output(rule, &agg_result);
let rec_info = if configs::CONFIG.read().unwrap().args.is_present("full-data") { let rec_info = if configs::CONFIG.read().unwrap().args.is_present("full-data") {