Changes between Version 13 and Version 14 of icasIII


Ignore:
Timestamp:
May 30, 2011, 6:15:13 PM (13 years ago)
Author:
waue
Comment:

--

Legend:

Unmodified
Added
Removed
Modified

  • icasIII

    v13 v14  
    7777}}}
    7878
     79
     80= IntegrateAlert =
     81
     82 == map output ==
     83{{{
     84key : dst_ip - classify_id
     85val : date @@ time @@ sip @@ ids @@ s-id @@ priority @@ port @@ description
     86}}}
     87 == reduce output ==
     88{{{
     89key: "tatal_count"-"class_count"-"sid_count")
     90values: src_ip @@ des_ip @@ priority @@ t1-tn @@ [c1,c2,...] @@ [sid1,sid2] @@ attack_list @@ port_list @@ ids
     91}}}