Home Explore Help
Sign In
emmanouil.vasilomano
/
PREPARE
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
PREPARE
/
tracing
/
modules
/
fields.js

fields.js 2.3 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576 
  1. /**
    2. 

  2.  * TraCINg-Server - Gathering and visualizing cyber incidents on the world
    3. 

  3.  *
    4. 

  4.  * Copyright 2013 Matthias Gazzari, Annemarie Mattmann, André Wolski
    5. 

  5.  * 
    6. 

  6.  * Licensed under the Apache License, Version 2.0 (the "License");
    7. 

  7.  * you may not use this file except in compliance with the License.
    8. 

  8.  * You may obtain a copy of the License at
    9. 

  9.  * 
    10. 

  10.  *     http://www.apache.org/licenses/LICENSE-2.0
    11. 

  11.  * 
    12. 

  12.  * Unless required by applicable law or agreed to in writing, software
    13. 

  13.  * distributed under the License is distributed on an "AS IS" BASIS,
    14. 

  14.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    15. 

  15.  * See the License for the specific language governing permissions and
    16. 

  16.  * limitations under the License.
    17. 

  17.  */
    18. 

  18. 

  19. // default is for all fields: 0
    20. 

  20. var fields = {
    21. 

  21.     "type": {
    22. 

  22.         0: "Unknown",
    23. 

  23. 	    1: "ECHO",
    24. 

  24. 	    2: "GHOST",
    25. 

  25.         10: "Transport Layer",
    26. 

  26.         11: "Portscan",
    27. 

  27.         20: "Shellcode Injection",
    28. 

  28.         30: "SQL",
    29. 

  29.         31: "MySQL",
    30. 

  30.         32: "MS SQL",
    31. 

  31.         40: "SMB",
    32. 

  32.         50: "VoIP",
    33. 

  33. 	    60: "FTP",
    34. 

  34. 	    70: "HTTP",
    35. 

  35. 	    71: "HTTPS",
    36. 

  36. 	    80: "TELNET"
    37. 

  37.     },
    38. 

  38.     "type_description": {
    39. 

  39.         0: "The sensor could not determine the attack type",
    40. 

  40. 	    1: "Attack on ECHO",
    41. 

  41. 	    2: "Attack that was mirrored (GHOST)",
    42. 

  42.         10: "The attacker connected to an open port, but did not interact with it",
    43. 

  43.         11: "The attacker tried to connect to a closed port",
    44. 

  44.         20: "The attacker successfully used an emulated security issue and would have been able to execute malicious code",
    45. 

  45.         30: "Attack on a database server",
    46. 

  46.         31: "Attack on a MySQL database server",
    47. 

  47.         32: "Attack on a Microsoft database server",
    48. 

  48.         40: "Attack on a SMB file server",
    49. 

  49.         50: "Attack on a Voice over IP device",
    50. 

  50. 	    60: "Attack on an FTP Server",
    51. 

  51. 	    70: "Attack on an HTTP Server",
    52. 

  52. 	    71: "Attack on an HTTPS Server",
    53. 

  53. 	    80: "Attack on an TELNET"
    54. 

  54.     }
    55. 

  55. };
    56. 

  56. 

  57. exports.fields = fields;
    58. 

  58. 

  59. exports.translate = function(serieField, currentSerie) {
    60. 

  60.     if(fields[serieField].hasOwnProperty(currentSerie))
    61. 

  61.         return fields[serieField][currentSerie];
    62. 

  62.     else
    63. 

  63.         return fields[serieField][0];
    64. 

  64. };
    65. 

  65. 

  66. function getKeys(obj) {
    67. 

  67. 	var keys = [];
    68. 

  68. 

  69. 	for(var key in obj) {
    70. 

  70. 		keys.push(key);
    71. 

  71. 	}
    72. 

  72. 

  73. 	return keys;
    74. 

  74. }
    75. 

  75. 

  76. exports.validTypes = getKeys(fields.type);
    77.