mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 14:48:21 +00:00
641154f8e8
- FileAnalysis::Info is now just a record used for logging, the fa_file record type is defined in init-bare.bro as the analogue to a connection record. - Starting to transfer policy hook triggers and analyzer results to events.
9 lines
272 B
Text
9 lines
272 B
Text
# @TEST-EXEC: bro -r $TRACES/http/get.trace $SCRIPTS/file-analysis-test.bro %INPUT
|
|
# @TEST-EXEC: btest-diff file_analysis.log
|
|
|
|
redef test_file_analysis_source = "HTTP";
|
|
|
|
redef test_get_file_name = function(f: fa_file): string
|
|
{
|
|
return fmt("%s-file", f$id);
|
|
};
|