mblanke/ThreatHunt
1
0
Fork 0
mirror of https://github.com/mblanke/ThreatHunt.git synced 2026-03-01 14:00:20 -05:00
Code Issues Packages Projects Releases Wiki Activity

version 0.3.1

Browse Source
This commit is contained in:
mblanke
2026-02-20 07:16:17 -05:00
parent 04a9946891
commit bb562a91ca
5 changed files with 32 additions and 29 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
backend/scan_cols.py Normal file
View File

@@ -0,0 +1,8 @@
import json, urllib.request
url = "http://localhost:8000/api/datasets?skip=0&limit=20&hunt_id=fd8ba3fb45de4d65bea072f73d80544d"
data = json.loads(urllib.request.urlopen(url).read())
for d in data["datasets"]:
ioc = list((d["ioc_columns"] or {}).items())
norm = d.get("normalized_columns") or {}
hc = {k: v for k, v in norm.items() if v in ("hostname", "fqdn", "username", "src_ip", "dst_ip", "ip_address", "os")}
print(d["name"], "|", d["row_count"], "|", ioc, "|", hc)