From 3daa875a253309ec2645e739890068cf1fad2433 Mon Sep 17 00:00:00 2001
From: chenjinsong <523037378@qq.com>
Date: Tue, 24 Oct 2023 20:58:03 +0800
Subject: [PATCH] =?UTF-8?q?fix:=20=E4=BF=AE=E5=A4=8Ddetection=E7=9A=84rang?=
 =?UTF-8?q?e=E5=8F=82=E6=95=B0=E4=BC=A0=E9=80=92=E9=94=99=E8=AF=AF?=
 =?UTF-8?q?=E7=9A=84=E9=97=AE=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 src/views/detections/Index.vue                        |  2 +-
 .../overview/DetectionSecurityEventOverview.vue       | 11 ++++-------
 2 files changed, 5 insertions(+), 8 deletions(-)

diff --git a/src/views/detections/Index.vue b/src/views/detections/Index.vue
index 9d01ded7..2c19371f 100644
--- a/src/views/detections/Index.vue
+++ b/src/views/detections/Index.vue
@@ -734,7 +734,7 @@ export default {
       const newUrl = urlParamsHandler(window.location.href, this.$route.query, {
         startTime: this.timeFilter.startTime,
         endTime: this.timeFilter.endTime,
-        range: this.dateRangeValue,
+        range: this.timeFilter.dateRangeValue,
         q: urlQ,
         mode: mode
       })
diff --git a/src/views/detections/overview/DetectionSecurityEventOverview.vue b/src/views/detections/overview/DetectionSecurityEventOverview.vue
index fd75926c..3053c063 100644
--- a/src/views/detections/overview/DetectionSecurityEventOverview.vue
+++ b/src/views/detections/overview/DetectionSecurityEventOverview.vue
@@ -3,14 +3,11 @@
     <div class="overview__left">
       <div class="overview__title">{{ $t('overall.remark') }}</div>
       <div class="overview__row">
-        <div class="row__content1" v-if="detection.eventType === 'Command and Control' && detection.eventName === 'Cobalt Strike'">
-          <span class="row__content--link">{{detection.victimIp}}</span>&nbsp;&nbsp;communicated with&nbsp;<span class="row__content--link">{{detection.offenderIp}}</span>&nbsp;&nbsp;that was associated with the  indicator of Cobalt Strike activity, {{$_.get(detection, 'eventInfoObj.ioc_value', '') || ''}}.
+        <div class="row__content1" v-if="detection.eventType === 'Command and Control' && detection.isBuiltin === 1">
+          <span class="row__content--link">{{detection.victimIp}}</span>&nbsp;&nbsp;communicated with&nbsp;<span class="row__content--link">{{detection.offenderIp}}</span>&nbsp;&nbsp;that was associated with the indicator of {{detection.eventName}} activity, {{$_.get(detection, 'eventInfoObj.ioc_value', '') || ''}}.
         </div>
-        <div class="row__content1" v-else-if="detection.eventType === 'Command and Control' && detection.eventName === 'Mirai'">
-          <span class="row__content--link">{{detection.victimIp}}</span>&nbsp;&nbsp;communicated with&nbsp;<span class="row__content--link">{{detection.offenderIp}}</span>&nbsp;&nbsp;that was associated with the  indicator of Mirai attacks, {{$_.get(detection, 'eventInfoObj.ioc_value', '') || ''}}.
-        </div>
-        <div class="row__content1" v-else-if="detection.eventType === 'Anonymity'">
-          <span class="row__content--link">{{detection.victimIp}}</span>&nbsp;&nbsp;communicated with&nbsp;<span class="row__content--link">{{detection.offenderIp}}</span>&nbsp;&nbsp;that was associated with the  indicator of Tor/I2P/MTProxy/Obfs4/Snowflake/GeneralBridge, {{$_.get(detection, 'eventInfoObj.ioc_value', '') || ''}}.
+        <div class="row__content1" v-else-if="detection.eventType === 'Anonymity' && detection.isBuiltin === 1">
+          <span class="row__content--link">{{detection.victimIp}}</span>&nbsp;&nbsp;communicated with&nbsp;<span class="row__content--link">{{detection.offenderIp}}</span>&nbsp;&nbsp;that was associated with the indicator of {{detection.eventName}}.
         </div>
         <div class="row__content1" v-else>
           {{basicInfo.ruleDescription || '-'}}