Cisco Cisco Firepower Management Center 4000 Guía Del Desarrollador
A-1
FireSIGHT eStreamer Integration Guide
A P P E N D I X
A
Data Structure Examples
This appendix contains data structure examples for selected intrusion, correlation, and discovery events.
Each example is displayed in binary format to clearly display how each bit is set.
Each example is displayed in binary format to clearly display how each bit is set.
See the following sections for more information:
•
•
Intrusion Event Data Structure Examples
This section contains examples of data structures that may be transmitted by eStreamer for intrusion
events. The following examples are provided:
events. The following examples are provided:
•
•
•
•
•
•
•
Example of an Intrusion Event for the Defense Center 5.3 +
The following diagram shows an example event record:
Byte
0
1
2
3
Bit
0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31
1
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0 0 0 0 0 0 0 0 0 0 0 0 1 0 0
2
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 1 0 1 1 1 0
3
0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 1 1 0 0 1 0 0 0 0