[
https://issues.apache.org/jira/browse/DRILL-8289?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17596962#comment-17596962
]
ASF GitHub Bot commented on DRILL-8289:
---------------------------------------
cgivre opened a new pull request, #2634:
URL: https://github.com/apache/drill/pull/2634
# [DRILL-8289](https://issues.apache.org/jira/browse/DRILL-8289): Add Threat
Hunting Functions
## Description
See below.
## Documentation
These functions are useful for doing threat hunting with Apache Drill.
These were inspired by huntlib.[1]
The functions are:
* `punctuation_pattern(<string>)`: Extracts the pattern of punctuation in
text.
* `entropy(<string>)`: This function calculates the Shannon Entropy of a
given string of text.
* `entropyPerByte(<string>)`: This function calculates the Shannon Entropy
of a given string of text, normed for the string length.
[1]: https://github.com/target/huntlib
## Testing
Added unit tests.
> Add Threat Hunting Functions
> ----------------------------
>
> Key: DRILL-8289
> URL: https://issues.apache.org/jira/browse/DRILL-8289
> Project: Apache Drill
> Issue Type: New Feature
> Components: Functions - Drill
> Affects Versions: 2.0.0
> Reporter: Charles Givre
> Assignee: Charles Givre
> Priority: Major
> Fix For: 2.0.0
>
>
> # Threat Hunting Functions
> These functions are useful for doing threat hunting with Apache Drill. These
> were inspired by huntlib.[1]
> The functions are:
> * `punctuation_pattern(<string>)`: Extracts the pattern of punctuation in
> text.
> * `entropy(<string>)`: This function calculates the Shannon Entropy of a
> given string of text.
> * `entropyPerByte(<string>)`: This function calculates the Shannon Entropy of
> a given string of text, normed for the string length.
> [1]: https://github.com/target/huntlib
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
