Struct usiem::events::SiemLog

source · [−]

pub struct SiemLog { /* private fields */ }

Expand description

This is a simple log event. It contains information about the asset that generated this log, the client if we are working in a multi-client environments aka SOC, some fields to facilitate correlation with SIGMA rules, timestamps and tags to better describe the content inside.

Struct usiem::events::SiemLog

Implementations

impl<'a> SiemLog

pub fn new<S, M>(message: M, received: i64, origin: S) -> SiemLog where S: Into<Cow<'static, str>>, M: Into<String>,

pub fn message(&'a self) -> &'a str

pub fn origin(&'a self) -> &'a str

pub fn tenant(&'a self) -> &'a str

pub fn set_tenant<S>(&mut self, tenant: S) where S: Into<Cow<'static, str>>,

pub fn product(&'a self) -> &'a str

pub fn set_product<S>(&mut self, product: S) where S: Into<Cow<'static, str>>,

pub fn service(&'a self) -> &'a str

pub fn set_service<S>(&mut self, service: S) where S: Into<Cow<'static, str>>,

pub fn category(&'a self) -> &'a str

pub fn set_category<S>(&mut self, category: S) where S: Into<Cow<'static, str>>,

pub fn vendor(&'a self) -> &'a str

pub fn set_vendor<S>(&mut self, vendor: S) where S: Into<Cow<'static, str>>,

pub fn event_received(&'a self) -> i64

pub fn event_created(&'a self) -> i64

pub fn set_event_created(&mut self, date: i64)

pub fn has_tag(&self, tag: &str) -> bool

pub fn add_tag(&mut self, tag: &str)

pub fn tags(&'a self) -> &'a BTreeSet<Cow<'static, str>>

pub fn field(&'a self, field_name: &str) -> Option<&SiemField>

pub fn add_field(&mut self, field_name: &str, field_value: SiemField)

pub fn has_field(&self, field_name: &str) -> bool

pub fn event(&self) -> &SiemEvent

pub fn set_event(&mut self, event: SiemEvent)

Trait Implementations

impl Clone for SiemLog

fn clone(&self) -> SiemLog

fn clone_from(&mut self, source: &Self)

impl Debug for SiemLog

fn fmt(&self, f: &mut Formatter<'_>) -> Result

impl Serialize for SiemLog

fn serialize<__S>(&self, __serializer: __S) -> Result<__S::Ok, __S::Error> where __S: Serializer,

Auto Trait Implementations

impl RefUnwindSafe for SiemLog

impl Send for SiemLog

impl Sync for SiemLog

impl Unpin for SiemLog

impl UnwindSafe for SiemLog

Blanket Implementations

impl<T> Any for T where T: 'static + ?Sized,

fn type_id(&self) -> TypeId

impl<T> Borrow<T> for T where T: ?Sized,

fn borrow(&self) -> &T

impl<T> BorrowMut<T> for T where T: ?Sized,

fn borrow_mut(&mut self) -> &mut T

impl<T> DynClone for T where T: Clone,

fn __clone_box(&self, Private) -> *mut ()

impl<T> From<T> for T

fn from(t: T) -> T

impl<T, U> Into<U> for T where U: From<T>,

fn into(self) -> U

impl<T> ToOwned for T where T: Clone,

type Owned = T

fn to_owned(&self) -> T

fn clone_into(&self, target: &mut T)

impl<T, U> TryFrom<U> for T where U: Into<T>,

type Error = Infallible

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

impl<T, U> TryInto<U> for T where U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

pub fn new<S, M>(message: M, received: i64, origin: S) -> SiemLog where
S: Into<Cow<'static, str>>,
M: Into<String>,

pub fn set_tenant<S>(&mut self, tenant: S) where
S: Into<Cow<'static, str>>,

pub fn set_product<S>(&mut self, product: S) where
S: Into<Cow<'static, str>>,

pub fn set_service<S>(&mut self, service: S) where
S: Into<Cow<'static, str>>,

pub fn set_category<S>(&mut self, category: S) where
S: Into<Cow<'static, str>>,

pub fn set_vendor<S>(&mut self, vendor: S) where
S: Into<Cow<'static, str>>,

fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error> where
S: Serializer,

impl<T> Any for T where
T: 'static + ?Sized,

impl<T> Borrow<T> for T where
T: ?Sized,

impl<T> BorrowMut<T> for T where
T: ?Sized,

impl<T> DynClone for T where
T: Clone,

impl<T, U> Into<U> for T where
U: From<T>,

impl<T> ToOwned for T where
T: Clone,

impl<T, U> TryFrom<U> for T where
U: Into<T>,

impl<T, U> TryInto<U> for T where
U: TryFrom<T>,