eventmap

package
v0.0.0-...-f0a5ce6 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 6, 2023 License: MIT Imports: 10 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func ApplySpecialTransformations 

func ApplySpecialTransformations(ord_map *ordereddict.Dict, Field_extra_transformations []common.Layer2FieldExtraTransformations)

func ConvertAllTypesToString 

func ConvertAllTypesToString(val interface{}, display_as string) string

func ExtraFixField 

func ExtraFixField(Ordered_fields_enhanced map[string]common.SingleField, key string, function string, value_to_fix string) string

func ExtractAttribs 

func ExtractAttribs(ev_map *ordereddict.Dict, attrib_extraction []common.ExtractedFunction, l1mode bool) *ordereddict.Dict

func GetChannel 

func GetChannel(ev_map *ordereddict.Dict) string

func GetCorrelationActivityID 

func GetCorrelationActivityID(ev_map *ordereddict.Dict) string

func GetCurrentComputer 

func GetCurrentComputer(ev_map *ordereddict.Dict) string

func GetEID 

func GetEID(ev_map *ordereddict.Dict) string

func GetEventRecordID 

func GetEventRecordID(ev_map *ordereddict.Dict) string

func GetEventRecordIDasNumber 

func GetEventRecordIDasNumber(ev_map *ordereddict.Dict) uint64

func GetKeywords 

func GetKeywords(ev_map *ordereddict.Dict) string

func GetOriginalDisplayValueForMapperBitwiseToString 

func GetOriginalDisplayValueForMapperBitwiseToString(current_params common.Params, nr int64) string

func GetOriginalDisplayValueForMapperNumberToString 

func GetOriginalDisplayValueForMapperNumberToString(current_params common.Params, value string) string

func GetOriginalDisplayValueForMapperStringToString 

func GetOriginalDisplayValueForMapperStringToString(current_params common.Params, value string) string

func GetProvider 

func GetProvider(ev_map *ordereddict.Dict) string

func GetProviderGUID 

func GetProviderGUID(ev_map *ordereddict.Dict) string

func GetProviderName 

func GetProviderName(ev_map *ordereddict.Dict) string

func GetSecurityUserID 

func GetSecurityUserID(ev_map *ordereddict.Dict) string

func GetSystemProcessID 

func GetSystemProcessID(ev_map *ordereddict.Dict) string

func GetSystemTime 

func GetSystemTime(ev_map *ordereddict.Dict, highprecisioneventtime string) string

func MapAttribToOrderedMap 

func MapAttribToOrderedMap(attrib_map *ordereddict.Dict, ord_map *ordereddict.Dict, Fields_remap *ordereddict.Dict, Ordered_fields_enhanced map[string]common.SingleField)

func ReadSpecialOptionForKey 

func ReadSpecialOptionForKey(Ordered_fields_enhanced map[string]common.SingleField, key string, param string) string

func ResolveDoubleQuotesInPlace 

func ResolveDoubleQuotesInPlace(double_quotes map[string]string, SIDList map[string]string, opt_v string, current_val string, sf_name string) string

func ResolveForMapperBitwiseToString 

func ResolveForMapperBitwiseToString(VariousMappers map[string]common.Params, map_name string, value string, sf_name string) string

func ResolveForMapperNumberToString 

func ResolveForMapperNumberToString(VariousMappers map[string]common.Params, map_name string, value string, sf_name string) string

func ResolveForMapperStringToString 

func ResolveForMapperStringToString(VariousMappers map[string]common.Params, map_name string, value string, sf_name string) string

func ResolveMappersAndDoubleQuotesInPlace 

func ResolveMappersAndDoubleQuotesInPlace(ord_map *ordereddict.Dict, Ordered_fields_enhanced map[string]common.SingleField, VariousMappers map[string]common.Params, doublequotes map[string]string, SIDList map[string]string)

Types

type EventMap 

type EventMap = ordereddict.Dict

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.