Miscellaneous & Auxiliary

MIME-Extension Mappings

Generate Mappings

File location:

  • Bundled implementation: source/utils/mime2ext.py

  • Cluster implementation: cluster/utils/mime2ext.py

Note

This script support all version since Python 2.7.

BROAPT_FORCE_UPDATE
Type:

bool

Default:

False

Set the environment variable to True if you wish to update existing mappings; otherwise, it will only add mappings of new MIME types.

The script fetch the MIME types from IANA registries and try to automatically match them with the file extensions through mimetypes database. It will then dump the mappings to corresponding file-extensions.bro as discussed in the documentation.

Should there be an unknown MIME type, it will prompt for user to type in the corresponding file extensions.

Fix Missing Mappings

File location:

  • Bundled implementation: source/utils/fix-missing.py

  • Cluster implementation: cluster/utils/fix-missing.py

Note

This script support all version since Python 2.7.

BROAPT_LOGS_PATH
Type:

str (path)

Default:

/var/log/bro/

Path to system logs.

In the BroAPT system, when encountering a MIME type not present in the file-extensions.bro database, it will record such MIME type into a log file under the log path const.LOGS_PATH, named processed_mime.log.

The script will read the log file and try to update the file-extensions.bro database with these found-missing MIME types.

Bro Script Composers

HTTP Method Registry

File location:

source/utils/http-methods.py

Note

This script support all version since Python 2.7.

As discussed in BroAPT-Core Extration Framework, we have introduced full HTTP methods registry to the BroAPT system in Bro script sites/const/http-methods.bro.

The script will read the IANA registries and update the builtin HTTP::http_methods with the fetched data.

HTTP Message Headers

File location:

source/utils/http-header-names.py

Note

This script support all version since Python 2.7.

As discussed in BroAPT-Core Extration Framework, we have introduced full HTTP message header registry to the BroAPT system in Bro script sites/const/http-header-names.bro.

The script will read the IANA registries and update the builtin HTTP::header_names with the fetched data.

FTP Commands & Extensions

File location:

source/utils/ftp-commands.py

Note

This script support all version since Python 2.7.

As discussed in BroAPT-Core Extration Framework, we have introduced full FTP commands ands extensions registry to the BroAPT system in Bro script sites/const/ftp-commands.bro.

The script will read the IANA registries and update the builtin FTP::logged_commands with the fetched data.