Class: Threatstack::Events::AttackEvent

Inherits:

BaseEvent

• Object
• BaseEvent
• Threatstack::Events::AttackEvent

Defined in:

lib/events/models/attack_event.rb

Overview

Instrumentation event model that inherits the common attributes and adds its own specifics

Instance Attribute Summary

• #attack_details ⇒ Object

  Returns the value of attribute attack_details.

• #attack_message ⇒ Object

  Returns the value of attribute attack_message.

• #attack_stack ⇒ Object

  Returns the value of attribute attack_stack.

• #module_name ⇒ Object

  Returns the value of attribute module_name.

• #request_headers ⇒ Object

  Returns the value of attribute request_headers.

• #request_ip ⇒ Object

  Returns the value of attribute request_ip.

• #request_method ⇒ Object

  Returns the value of attribute request_method.

• #request_url ⇒ Object

  Returns the value of attribute request_url.

Attributes inherited from BaseEvent

#agent_type, #event_id, #event_type, #timestamp

Instance Method Summary

• #initialize(args) ⇒ AttackEvent constructor

  A new instance of AttackEvent.

• #to_hash ⇒ Object

Methods inherited from BaseEvent

#to_core_hash, #to_json_string

Constructor Details

#initialize(args) ⇒ AttackEvent

Returns a new instance of AttackEvent.

Parameters:

• args (Hash) —

  String

  args.event_id

  String

  args.timestamp

  String

  args.request_ip

  Hash

  args.request_headers

  String

  args.request_url

  String

  args.request_method

  String

  args.module_name

  String

  args.attack_message

  String

  args.attack_stack

  Hash

  args.attack_details

# File 'lib/events/models/attack_event.rb', line 30

def initialize(args)
  args[:event_type] = Threatstack::Constants::ATTACK
  @request_ip = args[:request_ip]
  @request_headers = args[:request_headers]
  @request_url = args[:request_url]
  @request_method = args[:request_method]
  @module_name = args[:module_name]
  @attack_message = args[:attack_message]
  @attack_stack = args[:attack_stack]
  @attack_details = args[:attack_details]
  super args
end

Instance Attribute Details

#attack_details ⇒ Object

Returns the value of attribute attack_details.

# File 'lib/events/models/attack_event.rb', line 17

def attack_details
  @attack_details
end

#attack_message ⇒ Object

Returns the value of attribute attack_message.

# File 'lib/events/models/attack_event.rb', line 15

def attack_message
  @attack_message
end

#attack_stack ⇒ Object

Returns the value of attribute attack_stack.

# File 'lib/events/models/attack_event.rb', line 16

def attack_stack
  @attack_stack
end

#module_name ⇒ Object

Returns the value of attribute module_name.

# File 'lib/events/models/attack_event.rb', line 14

def module_name
  @module_name
end

#request_headers ⇒ Object

Returns the value of attribute request_headers.

# File 'lib/events/models/attack_event.rb', line 11

def request_headers
  @request_headers
end

#request_ip ⇒ Object

Returns the value of attribute request_ip.

# File 'lib/events/models/attack_event.rb', line 10

def request_ip
  @request_ip
end

#request_method ⇒ Object

Returns the value of attribute request_method.

# File 'lib/events/models/attack_event.rb', line 13

def request_method
  @request_method
end

#request_url ⇒ Object

Returns the value of attribute request_url.

# File 'lib/events/models/attack_event.rb', line 12

def request_url
  @request_url
end

Instance Method Details

#to_hash ⇒ Object

# File 'lib/events/models/attack_event.rb', line 43

def to_hash
  hash = to_core_hash
  hash[:module_name] = @module_name
  hash[:payload] = {
    :attack => {
      :message => @attack_message, :stack => @attack_stack, :details => @attack_details
    },
    :req => {
      :headers => @request_headers, :ip_address => @request_ip, :url => @request_url, :method => @request_method
    }
  }
  hash
end