def parseIndicator(self, iocFile, iocFileName):
# Record the Starting Time
startTime = time.time()
indicator_to_return = []
# Read file
try:
xmldoc = minidom.parseString(iocFile)
except Exception:
logger = Logger()
logger.info("Ignore IOC file {}".format(iocFile))
else:
# Principal Indicator
id = os.path.splitext(iocFileName)[0]
parent_indicator = Indicator(id, self.getFormat())
description = self.getChildrenByTagName( xmldoc._get_firstChild(), "description")
parent_indicator.description = description
indicator_to_return.append(parent_indicator)
children_indicators = []
itemlist = xmldoc._get_firstChild().getElementsByTagName("Indicator")
for item in itemlist:
children_indicator = Indicator(item.attributes['id'].value, self.getFormat())
children_indicator.operator = item.attributes['operator'].value
children_indicator.evidences = self.__getChildrenEvidences__(item)
children_indicator.parent = parent_indicator
children_indicators.append(children_indicator)
parent_indicator.children = children_indicators
return indicator_to_return
评论列表
文章目录
