Data Structures | Enumerations | Functions | Variables

Module for the correlation of hyperalerts

Data Structures

struct  hyperalert_key
struct  hyperalert

Enumerations

enum  {
  inHyperAlert, inSnortIdTag, inPreTag, inPostTag,
  TAG_NUM
}

Functions

PRIVATE hyperalert_AI_hyperalert_from_XML (hyperalert_key key)
 Parse info about a hyperalert from a correlation XML file, if it exists.
void * AI_alert_correlation_thread (void *arg)
 Thread for correlating clustered alerts.

Variables

PRIVATE hyperalerthyperalerts = NULL
PRIVATE AI_configconf = NULL

Enumeration Type Documentation

anonymous enum

Enumeration for the types of XML tags

Enumerator:
inHyperAlert 
inSnortIdTag 
inPreTag 
inPostTag 
TAG_NUM 

Function Documentation

PRIVATE hyperalert* _AI_hyperalert_from_XML ( hyperalert_key  key  ) 

Parse info about a hyperalert from a correlation XML file, if it exists.

FUNCTION: _AI_hyperalert_from_XML

Parameters:
key Key (gid, sid, rev) identifying the alert
Returns:
A hyperalert structure containing the info about the current alert, if the XML file was found
void* AI_alert_correlation_thread ( void *  arg  ) 

Thread for correlating clustered alerts.

Parameters:
arg Void pointer to module's configuration

Variable Documentation

PRIVATE AI_config* conf = NULL
PRIVATE hyperalert* hyperalerts = NULL
 All Data Structures Files Functions Variables Typedefs Enumerations Enumerator Defines
Generated on Fri Sep 10 2010 02:56:16 for Snort AI preprocessor module by  doxygen 1.7.1