-
- {{ basicInfo.appInfo.category.appRisk }}
+
+
+
+
APP
+
{{ $_.get(basicInfo, 'appInfo.category.appName', '-') || '-' }}
+
+
APP {{ $t('entities.category') }}
+
{{ $_.get(basicInfo, 'appInfo.category.appCategory', '-') || '-' }}
+
+
APP {{ $t('entities.subcategory') }}
+
{{ $_.get(basicInfo, 'appInfo.category.appSubcategory', '-') || '-' }}
+
+
{{ $t('overall.appRisk') }}
+
+
+ {{ appRisk(basicInfo.appInfo.category.appRisk) || '-' }}
+
+
-
-
-
-
-
{{ $t('detections.malware') }}
-
{{ $_.get(basicInfo, 'malwareInfo.malwareName', '-') || '-' }}
-
-
-
{{ $t('detections.malwareAlias') }}
-
{{ $_.get(basicInfo, 'malwareInfo.malwareAlias', '-') || '-' }}
-
-
-
{{ $t('detections.malwareDescription') }}
-
{{ $_.get(basicInfo, 'malwareInfo.mitreAttackDescription', '-') || '-' }}
-
-
-
{{ $t('detections.malwarePlatforms') }}
-
-
- {{ basicInfo.malwareInfo.mitreAttackPlatforms }}
+
+
+
+
{{ $t('detections.malware') }}
+
{{ $_.get(basicInfo, 'malwareInfo.malwareName', '-') || '-' }}
-
-
-
-
{{ $t('detections.malwareTechniques') }}
-
{{ $_.get(basicInfo, 'malwareInfo.mitreAttackTechniques', '-') || '-' }}
-
-
-
{{ $t('detections.malwareGroups') }}
-
{{ $_.get(basicInfo, 'malwareInfo.mitreAttackGroups', '-') || '-' }}
-
-
-
{{ $t('detections.reference') }}
-
- {{ basicInfo.malwareInfo.reference }}
+
+
{{ $t('detections.malwareAlias') }}
+
{{ $_.get(basicInfo, 'malwareInfo.malwareAlias', '-') || '-' }}
-
-
-
+
+
{{ $t('detections.malwareDescription') }}
+
{{ $_.get(basicInfo, 'malwareInfo.mitreAttackDescription', '-') || '-' }}
+
+
+
{{ $t('detections.malwarePlatforms') }}
+
+
+ {{ basicInfo.malwareInfo.mitreAttackPlatforms }}
+
+
-
+
+
+
{{ $t('detections.malwareTechniques') }}
+
{{ $_.get(basicInfo, 'malwareInfo.mitreAttackTechniques', '-') || '-' }}
+
+
+
{{ $t('detections.malwareGroups') }}
+
{{ $_.get(basicInfo, 'malwareInfo.mitreAttackGroups', '-') || '-' }}
+
+
+
{{ $t('detections.reference') }}
+
+ {{ basicInfo.malwareInfo.reference }}
+
+
-
+
+
+
+
+
{{ $t('detection.nodeTypeLower') }}
+
{{ $_.get(basicInfo, 'darkweb.nodeType', '-') || '-' }}
+
+
{{ $t('detection.tor.torFingerprint') }}
+
{{ $_.get(basicInfo, 'darkweb.torFingerprint', '-') || '-' }}
+
+
{{ $t('detection.tor.torFlags') }}
+
{{ $_.get(basicInfo, 'darkweb.torFlags', '-') || '-' }}
+
+
{{ $t('detection.tor.torVersion') }}
+
{{ $_.get(basicInfo, 'darkweb.torVersion', '-') || '-' }}
+
+
Tor ORPort
+
{{ $_.get(basicInfo, 'darkweb.torOrPort', '-') || '-' }}
+
+
Tor DirPort
+
{{ $_.get(basicInfo, 'darkweb.torDirPort', '-') || '-' }}
+
+
I2P Hash
+
{{ $_.get(basicInfo, 'darkweb.i2pHash', '-') || '-' }}
+
+
{{ $t('detection.tor.i2pVersion') }}
+
{{ $_.get(basicInfo, 'darkweb.i2pVersion', '-') || '-' }}
+
+
{{ $t('detection.tor.i2pBandwidth') }}
+
{{ $_.get(basicInfo, 'darkweb.i2pBandwidth', '-') || '-' }}
+
+
MTProxy Secret
+
{{ $_.get(basicInfo, 'darkweb.mtproxySecret', '-') || '-' }}
+
+
{{ $t('detection.tor.mtproxyPort') }}
+
{{ $_.get(basicInfo, 'darkweb.mtproxyPort', '-') || '-' }}
+
+
{{ $t('detection.tor.obfs4Fingerprint') }}
+
{{ $_.get(basicInfo, 'darkweb.obfs4Fingerprint', '-') || '-' }}
+
+
{{ $t('detection.tor.obfs4Cert') }}
+
{{ $_.get(basicInfo, 'darkweb.obfs4Cert', '-') || '-' }}
+
+
{{ $t('detection.tor.obfs4IatMode') }}
+
{{ $_.get(basicInfo, 'darkweb.obfs4IatMode', '-') || '-' }}
+
+
{{ $t('detection.tor.obfs4Port') }}
+
{{ $_.get(basicInfo, 'darkweb.obfs4Port', '-') || '-' }}
+
+
{{ $t('detection.tor.snowflakePort') }}
+
{{ $_.get(basicInfo, 'darkweb.snowflakePort', '-') || '-' }}
+
+
+
+
{{ $t('detection.libraryId') }}
+
{{ $_.get(detection, 'eventInfoObj.knowledge_id', '-') || '-' }}
+
+
{{ $t('detection.libraryName') }}
+
{{ $_.get(detection, 'eventInfoObj.name', '-') || '-' }}
+
+
{{ $t('detection.iocType') }}
+
{{ $_.get(detection, 'eventInfoObj.ioc_type', '-') || '-' }}
+
+
{{ $t('detection.iocValue') }}
+
{{ $_.get(detection, 'eventInfoObj.ioc_value', '-') || '-' }}
+
{{ $t('detections.goToVictim') }}
@@ -251,7 +336,7 @@
import axios from 'axios'
import { api } from '@/utils/api'
import { getMillisecond, dateFormatByAppearance } from '@/utils/date-util'
-import { eventSeverityColor, unitTypes } from '@/utils/constants'
+import { eventSeverityColor, unitTypes, riskLevelMapping, riskLevelColor } from '@/utils/constants'
import unitConvert from '@/utils/unit-convert'
import _ from 'lodash'
export default {
@@ -262,6 +347,7 @@ export default {
data () {
return {
eventSeverityColor,
+ riskLevelColor,
basicInfo: {},
events: [],
reference: 'https://attack.mitre.org'
@@ -288,6 +374,14 @@ export default {
}
return ''
}
+ },
+ appRisk () {
+ return function (level) {
+ const m = riskLevelMapping.find(mapping => {
+ return mapping.value == level
+ })
+ return (m && m.name) || level
+ }
}
},
methods: {
@@ -303,9 +397,6 @@ export default {
axios.get(`${api.detection.securityEvent.ipDetail}?resource=${this.detection.offenderIp}`).then(res => {
if (res.status === 200) {
this.basicInfo.offenderInfo = res.data.data
- if (this.$_.get(this.detection, 'eventInfoObj.ioc_type', '').toLowerCase() === 'ip') {
- this.basicInfo.malwareInfo = res.data.data.malware
- }
}
})
}
@@ -320,9 +411,6 @@ export default {
axios.get(`${api.detection.securityEvent.domainDetail}?resource=${this.detection.domain}`).then(res => {
if (res.status === 200) {
this.basicInfo.domainInfo = res.data.data
- if (this.$_.get(this.detection, 'eventInfoObj.ioc_type', '').toLowerCase() === 'domain') {
- this.basicInfo.malwareInfo = res.data.data.malware
- }
}
})
}