/ 
STIX-1.01
/ STIX::Observable::NetworkTraffic

NAME

STIX::Observable::NetworkTraffic - STIX Cyber-observable Object (SCO) - Network Traffic

SYNOPSIS

use STIX::Observable::NetworkTraffic;

my $network_traffic = STIX::Observable::NetworkTraffic->new();

DESCRIPTION

The Network Traffic Object represents arbitrary network traffic that originates from a source and is addressed to a destination.

METHODS

STIX::Observable::NetworkTraffic inherits all methods from STIX::Observable and implements the following new ones.

STIX::Observable::NetworkTraffic->new(%properties)

Create a new instance of STIX::Observable::NetworkTraffic.

$network_traffic->dst_byte_count

Specifies the number of bytes sent from the destination to the source.

$network_traffic->dst_packets

Specifies the number of packets sent destination to the source.

$network_traffic->dst_payload_ref

Specifies the bytes sent from the source to the destination.

$network_traffic->dst_port

Specifies the destination port used in the network traffic, as an integer. The port value MUST be in the range of 0 - 65535.

$network_traffic->dst_ref

Specifies the destination of the network traffic, as a reference to an Observable Object.

$network_traffic->encapsulated_by_ref

Links to another network-traffic object which encapsulates this object.

$network_traffic->encapsulates_refs

Links to other network-traffic objects encapsulated by a network-traffic.

$network_traffic->end

Specifies the date/time the network traffic ended, if known.

$network_traffic->extensions

The Network Traffic Object defines the following extensions. In addition to these, producers MAY create their own. Extensions: http-ext, tcp-ext, icmp-ext, socket-ext

$network_traffic->id
$network_traffic->ipfix

Specifies any IP Flow Information Export (IPFIX) data for the traffic.

$network_traffic->protocols

Specifies the protocols observed in the network traffic, along with their corresponding state.

$network_traffic->src_byte_count

Specifies the number of bytes sent from the source to the destination.

$network_traffic->src_packets

Specifies the number of packets sent from the source to the destination.

$network_traffic->src_payload_ref

Specifies the bytes sent from the source to the destination.

$network_traffic->src_port

Specifies the source port used in the network traffic, as an integer. The port value MUST be in the range of 0 - 65535.

$network_traffic->src_ref

Specifies the source of the network traffic, as a reference to an Observable Object.

$network_traffic->start

Specifies the date/time the network traffic was initiated, if known.

$network_traffic->type

The value of this property MUST be network-traffic.

HELPERS

$network_traffic->TO_JSON

Encode the object in JSON.

$network_traffic->to_hash

Return the object HASH.

$network_traffic->to_string

Encode the object in JSON.

$network_traffic->validate

Validate the object using JSON Schema (see STIX::Schema).

SUPPORT

Bugs / Feature Requests

Please report any bugs or feature requests through the issue tracker at https://github.com/giterlizzi/perl-STIX/issues. You will be notified automatically of any progress on your issue.

Source Code

This is open source software. The code repository is available for public review and contribution under the terms of the license.

https://github.com/giterlizzi/perl-STIX

git clone https://github.com/giterlizzi/perl-STIX.git

AUTHOR

  • Giuseppe Di Terlizzi <gdt@cpan.org>

LICENSE AND COPYRIGHT

This software is copyright (c) 2024 by Giuseppe Di Terlizzi.

This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.