-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathban_hostgroup.json
1 lines (1 loc) · 1.34 KB
/
ban_hostgroup.json
1
{ "hostgroup_name": "servers", "parent_hostgroup_name": "xxx", "action": "ban", "attack_details": { "attack_uuid": "356f66db-4a7a-49a3-8dfb-eed09a15f5f7", "attack_severity": "middle", "attack_type": "unknown", "protocol_version": "IPv4", "initial_attack_power": 0, "peak_attack_power": 0, "attack_direction": "other", "attack_protocol": "unknown", "attack_detection_source": "automatic", "total_incoming_traffic": 0, "total_outgoing_traffic": 0, "total_incoming_pps": 0, "total_outgoing_pps": 0, "total_incoming_flows": 0, "total_outgoing_flows": 0, "average_incoming_traffic": 0, "average_outgoing_traffic": 0, "average_incoming_pps": 0, "average_outgoing_pps": 0, "average_incoming_flows": 0, "average_outgoing_flows": 0, "incoming_ip_fragmented_traffic": 0, "outgoing_ip_fragmented_traffic": 0, "incoming_ip_fragmented_pps": 0, "outgoing_ip_fragmented_pps": 0, "incoming_tcp_traffic": 0, "outgoing_tcp_traffic": 0, "incoming_tcp_pps": 0, "outgoing_tcp_pps": 0, "incoming_syn_tcp_traffic": 0, "outgoing_syn_tcp_traffic": 0, "incoming_syn_tcp_pps": 0, "outgoing_syn_tcp_pps": 0, "incoming_udp_traffic": 0, "outgoing_udp_traffic": 0, "incoming_udp_pps": 0, "outgoing_udp_pps": 0, "incoming_icmp_traffic": 0, "outgoing_icmp_traffic": 0, "incoming_icmp_pps": 0, "outgoing_icmp_pps": 0 }, "hostgroup_networks": [ "192.168.1.0\/24", "10.10.1.2\/16" ], "alert_scope": "hostgroup" }