File tree Expand file tree Collapse file tree 5 files changed +16
-101
lines changed
translator/platforms/carbonblack Expand file tree Collapse file tree 5 files changed +16
-101
lines changed Load Diff This file was deleted.
Original file line number Diff line number Diff line change 88 "platform_name" : "Query (Cloud)" ,
99}
1010
11+
12+ DEFAULT_CARBONBLACK_CTI_MAPPING = {
13+ "SourceIP" : "netconn_local_ipv4" ,
14+ "DestinationIP" : "netconn_ipv4" ,
15+ "Domain" : "netconn_domain" ,
16+ "URL" : "netconn_domain" ,
17+ "HashMd5" : "hash" ,
18+ "HashSha256" : "hash" ,
19+ "Files" : "filemod_name" ,
20+ "Emails" : "process_username" ,
21+ }
22+
23+
1124carbonblack_query_details = PlatformDetails (** CARBON_BLACK_QUERY_DETAILS )
Load Diff This file was deleted.
Original file line number Diff line number Diff line change 2020from app .translator .core .models .platform_details import PlatformDetails
2121from app .translator .core .render_cti import RenderCTI
2222from app .translator .managers import render_cti_manager
23- from app .translator .platforms .carbonblack .const import carbonblack_query_details
24- from app . translator . platforms . carbonblack . mappings . carbonblack_cti import DEFAULT_CARBONBLACK_MAPPING
23+ from app .translator .platforms .carbonblack .const import DEFAULT_CARBONBLACK_CTI_MAPPING , carbonblack_query_details
24+
2525
2626
2727@render_cti_manager .register
@@ -35,4 +35,4 @@ class CarbonBlackCTI(RenderCTI):
3535 result_join : str = ""
3636 final_result_for_many : str = "({result})\n "
3737 final_result_for_one : str = "{result}\n "
38- default_mapping = DEFAULT_CARBONBLACK_MAPPING
38+ default_mapping = DEFAULT_CARBONBLACK_CTI_MAPPING
You can’t perform that action at this time.
0 commit comments