mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 14:48:21 +00:00
20 lines
No EOL
384 B
Text
20 lines
No EOL
384 B
Text
|
|
module Files;
|
|
|
|
export {
|
|
redef record Files::Info += {
|
|
## The information density of the contents of the file,
|
|
## expressed as a number of bits per character.
|
|
entropy: double &log &optional;
|
|
};
|
|
}
|
|
|
|
event file_new(f: fa_file)
|
|
{
|
|
Files::add_analyzer(f, Files::ANALYZER_ENTROPY);
|
|
}
|
|
|
|
event file_entropy(f: fa_file, ent: entropy_test_result)
|
|
{
|
|
f$info$entropy = ent$entropy;
|
|
} |