mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 06:38:20 +00:00
19 lines
No EOL
378 B
Text
19 lines
No EOL
378 B
Text
|
|
module Files;
|
|
|
|
export {
|
|
redef record Files::Info += {
|
|
## The information density of the contents of the file, expressed as a number of bits per character.
|
|
entropy: double &log &optional;
|
|
};
|
|
}
|
|
|
|
event file_new(f: fa_file)
|
|
{
|
|
Files::add_analyzer(f, Files::ANALYZER_ENTROPY);
|
|
}
|
|
|
|
event file_entropy(f: fa_file, ent: entropy_test_result)
|
|
{
|
|
f$info$entropy = ent$entropy;
|
|
} |