Unified2 file analyzer updated to new plugin style.

2025-10-06 16:48:19 +00:00 · 2013-08-10 22:26:32 -04:00 · 2013-08-10 22:26:32 -04:00 · 04de4ce24b
commit 04de4ce24b
parent a6eb7bb9df
15 changed files with 169 additions and 28 deletions
--- a/scripts/base/files/unified2/load.bro
+++ b/scripts/base/files/unified2/load.bro
@ -0,0 +1 @@
+@load ./main
--- a/scripts/base/files/unified2/main.bro
+++ b/scripts/base/files/unified2/main.bro
@ -0,0 +1,16 @@
+
+
+
+event file_new(f: fa_file)
+	{
+	print "found a file";
+	print f$mime_type;
+	print Files::add_analyzer(f, Files::ANALYZER_UNIFIED2);
+	}
+
+event unified2_alert(f: fa_file, alert: count)
+	{
+	print "yaayyaya!!!";
+
+	print alert;
+	}