You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@drill.apache.org by "ASF GitHub Bot (Jira)" <ji...@apache.org> on 2022/08/29 04:32:00 UTC

[jira] [Commented] (DRILL-8289) Add Threat Hunting Functions

    [ https://issues.apache.org/jira/browse/DRILL-8289?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17596962#comment-17596962 ] 

ASF GitHub Bot commented on DRILL-8289:
---------------------------------------

cgivre opened a new pull request, #2634:
URL: https://github.com/apache/drill/pull/2634

   # [DRILL-8289](https://issues.apache.org/jira/browse/DRILL-8289): Add Threat Hunting Functions
   
   ## Description
   See below.
   
   ## Documentation
   These functions are useful for doing threat hunting with Apache Drill.  These were inspired by huntlib.[1]
   
   The functions are: 
   * `punctuation_pattern(<string>)`:  Extracts the pattern of punctuation in text.
   * `entropy(<string>)`: This function calculates the Shannon Entropy of a given string of text.
   * `entropyPerByte(<string>)`: This function calculates the Shannon Entropy of a given string of text, normed for the string length.
   
   [1]: https://github.com/target/huntlib
   
   ## Testing
   Added unit tests.




> Add Threat Hunting Functions
> ----------------------------
>
>                 Key: DRILL-8289
>                 URL: https://issues.apache.org/jira/browse/DRILL-8289
>             Project: Apache Drill
>          Issue Type: New Feature
>          Components: Functions - Drill
>    Affects Versions: 2.0.0
>            Reporter: Charles Givre
>            Assignee: Charles Givre
>            Priority: Major
>             Fix For: 2.0.0
>
>
> # Threat Hunting Functions
> These functions are useful for doing threat hunting with Apache Drill. These were inspired by huntlib.[1]
> The functions are: 
> * `punctuation_pattern(<string>)`: Extracts the pattern of punctuation in text.
> * `entropy(<string>)`: This function calculates the Shannon Entropy of a given string of text.
> * `entropyPerByte(<string>)`: This function calculates the Shannon Entropy of a given string of text, normed for the string length.
> [1]: https://github.com/target/huntlib



--
This message was sent by Atlassian Jira
(v8.20.10#820010)