Struct usiem::components::alert::SiemAlert

pub struct SiemAlert {
    pub title: String,
    pub description: String,
    pub severity: AlertSeverity,
    pub date: i64,
    pub tags: Vec<String>,
    pub techniques: Vec<MitreTechniques>,
    pub rule: String,
    pub log: SiemLog,
    pub aggr_limit: i64,
    pub aggr_key: String,
}

Expand description

Basic Alert format

Fields

title: Stringdescription: Stringseverity: AlertSeverity

Severity of the alert

date: i64

When the alert was generated

tags: Vec<String>

List of tags to be added to the alert

techniques: Vec<MitreTechniques>

List of MitreAtack Techniques

rule: String

Name of the rule that generated the alert

log: SiemLog

The log that triggered this alert

aggr_limit: i64

Time at witch the Alert system must create a new case

aggr_key: String

Key to be used in the aggregation of alerts as to join multiple alerts into one

Trait Implementations

impl Clone for SiemAlert

fn clone(&self) -> SiemAlert

Returns a copy of the value. Read more

1.0.0 · source

fn clone_from(&mut self, source: &Self)

Performs copy-assignment from source. Read more

impl Debug for SiemAlert

fn fmt(&self, f: &mut Formatter<'_>) -> Result

Formats the value using the given formatter. Read more

impl Serialize for SiemAlert

fn serialize<S>(&self, serializer: S) -> Result<S::Ok, S::Error>where
S: Serializer,

Serialize this value into the given Serde serializer. Read more

Auto Trait Implementations

impl RefUnwindSafe for SiemAlert

impl Send for SiemAlert

impl Sync for SiemAlert

impl Unpin for SiemAlert

impl UnwindSafe for SiemAlert

Blanket Implementations

impl<T> Any for Twhere
T: 'static + ?Sized,

fn type_id(&self) -> TypeId

Gets the TypeId of self. Read more

impl<T> Borrow<T> for Twhere
T: ?Sized,

const: unstable · source

fn borrow(&self) -> &T

Immutably borrows from an owned value. Read more

impl<T> BorrowMut<T> for Twhere
T: ?Sized,

const: unstable · source

fn borrow_mut(&mut self) -> &mut T

Mutably borrows from an owned value. Read more

impl<T> DynClone for Twhere
T: Clone,

fn __clone_box(&self, _: Private) -> *mut ()

impl<T> From<T> for T

const: unstable · source

fn from(t: T) -> T

Returns the argument unchanged.

impl<T, U> Into<U> for Twhere
U: From<T>,

const: unstable · source

fn into(self) -> U

Calls U::from(self).

That is, this conversion is whatever the implementation of From<T> for U chooses to do.

impl<T> ToOwned for Twhere
T: Clone,

type Owned = T

The resulting type after obtaining ownership.

fn to_owned(&self) -> T

Creates owned data from borrowed data, usually by cloning. Read more

fn clone_into(&self, target: &mut T)

Uses borrowed data to replace owned data, usually by cloning. Read more

impl<T, U> TryFrom<U> for Twhere
U: Into<T>,

type Error = Infallible

The type returned in the event of a conversion error.

const: unstable · source

fn try_from(value: U) -> Result<T, <T as TryFrom<U>>::Error>

Performs the conversion.

impl<T, U> TryInto<U> for Twhere
U: TryFrom<T>,

type Error = <U as TryFrom<T>>::Error

The type returned in the event of a conversion error.

const: unstable · source

fn try_into(self) -> Result<U, <U as TryFrom<T>>::Error>

Performs the conversion.