Skip to content

Commit

Permalink
zeek.py: make it clear that tx_hosts is the server in files.log
Browse files Browse the repository at this point in the history
  • Loading branch information
AlyaGomaa committed Oct 24, 2024
1 parent 6b801d7 commit d22cded
Showing 1 changed file with 6 additions and 2 deletions.
8 changes: 6 additions & 2 deletions slips_files/core/input_profilers/zeek.py
Original file line number Diff line number Diff line change
Expand Up @@ -213,8 +213,12 @@ def process_line(self, new_line: dict):
line.get("source", ""),
line.get("analyzers", ""),
line.get("sha1", ""),
line.get("tx_hosts", ""),
line.get("rx_hosts", ""),
line.get(
"tx_hosts", ""
), # this srcip is tx_hosts in the zeek files.log, aka sender of the
# file, aka server
line.get("rx_hosts", ""), # this is the host that received
# the file
)
elif "arp" in file_type:
self.flow: ARP = ARP(
Expand Down

0 comments on commit d22cded

Please sign in to comment.