Alerts
{{ scan.number_of_alerts }}
Warning
{{ scan.number_of_warning }}
Notice
{{ scan.number_of_notices }}
{{ scan.entity_name_id }}
Scan id: {{ scan.id }}Upload Date {{ scan.upload_date }}
Scan Date {{ scan.scan_date }}
Uploaded by {{ scan.added_by }}
Processed By {{ scan.processed_by }}
{{ scan.host_name }}
Host NameDrive Name {{ scan.drive_name }}
Number of Yara Rules scanned {{ scan.number_of_yara_scanned }}
Executed as Admin {% if scan.is_admin %} Yes {% else %} No {% endif %}
Completed {% if scan.is_completed %} Yes {% else %} No {% endif %}
File scan List
File Scan
id# | Type | Score | Hash | Reasons | Status | Edit | File Name | Analyst Comment |
---|---|---|---|---|---|---|---|---|
{{ trigger.id }} | {% if trigger.trigger_type == 'Warning' %} Warning {% elif trigger.trigger_type == 'Alert' %} Alert {% else %} info {% endif %} | {{ trigger.score }} | show | {% if trigger.incident_status == 'Pending' %} Pending {% elif trigger.incident_status == 'Confirmed_incident' %} Confirmed_incident {% else %} False_Positive {% endif %} | Edit | {{ trigger.file_name }} | {{ trigger.analyst_comment }} |
Reasons
Reason | Sub Score | Description | String 1 | String 2 | String 3 |
---|---|---|---|---|---|
{{ reason.reason }} | {{ reason.sub_score}} | {{ reason.descreption }} | {{ reason.string_1}} | {{ reason.string_2}} | {{ reason.string_3}} |
Proccess Scan List
id# | Type | Proccess Name | Proccess Path | owner | Status | Edit | cmd | Analyst Comment |
---|---|---|---|---|---|---|---|---|
{{ proccess_scan.id }} | {% if proccess_scan.process_inf_type == 'Warning' %} Warning {% elif proccess_scan.process_inf_type == 'Alert' %} Alert {% else %} info {% endif %} | {{ proccess_scan.process_name }} | {{ proccess_scan.process_path }} | {{ proccess_scan.owner }} | {% if proccess_scan.incident_status == 'Pending' %} Pending {% elif proccess_scan.incident_status == 'Confirmed_incident' %} Confirmed_incident {% else %} False_Positive {% endif %} | Edit | {{ proccess_scan.cmd }} | {{ proccess_scan.analyst_comment }} |