0x221E/siem-integrations
1
0
Fork 0
Code Issues 1 Pull Requests Actions Packages Projects Releases Wiki Activity

Patch: Rename variable 'a' to 'formatted_alert'

Browse Source 
Patch: Add json library
This commit is contained in:
0x221E
2026-01-27 21:19:25 +01:00
parent 57481a022c
commit a9485028f2
1 changed files with 4 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

7
custom-wazuh.py
View File

@@ -1,5 +1,6 @@
import sys import sys
import alert import alert
import json
import logging import logging
import iris_api import iris_api
from datetime import datetime from datetime import datetime
@@ -25,16 +26,16 @@ def main():
formatted_alert = processor.process(alert_json) formatted_alert = processor.process(alert_json)
alert_result = client.alert(a.to_IRIS()) alert_result = client.alert(formatted_alert.to_IRIS())
match = None match = None
for case in client.cases_list(): for case in client.cases_list():
if a.srcip in case["case_name"]: if formatted_alert.srcip in case["case_name"]:
match = case match = case
if match == None: if match == None:
client.case_new(a.srcip, a.title) client.case_new(formatted_alert.srcip, formatted_alert.title)
else: else:
iocs = [] iocs = []