Charles Givre created DRILL-8289:
------------------------------------

             Summary: Add Threat Hunting Functions
                 Key: DRILL-8289
                 URL: https://issues.apache.org/jira/browse/DRILL-8289
             Project: Apache Drill
          Issue Type: New Feature
          Components: Functions - Drill
    Affects Versions: 2.0.0
            Reporter: Charles Givre
            Assignee: Charles Givre
             Fix For: 2.0.0


# Threat Hunting Functions
These functions are useful for doing threat hunting with Apache Drill. These 
were inspired by huntlib.[1]

The functions are: 
* `punctuation_pattern(<string>)`: Extracts the pattern of punctuation in text.
* `entropy(<string>)`: This function calculates the Shannon Entropy of a given 
string of text.
* `entropyPerByte(<string>)`: This function calculates the Shannon Entropy of a 
given string of text, normed for the string length.

[1]: https://github.com/target/huntlib



--
This message was sent by Atlassian Jira
(v8.20.10#820010)

Reply via email to