Operators: com.ibm.streams.cybersecurity 2.1.1
Specialized toolkits - release 4.3.1.0-prod20190605 > com.ibm.streams.cybersecurity 2.1.1 > Operators
Operators
- BWListTagger
- The BWListTagger operator loads lists of domains and IP addresses into a lookup table.
- DNSTunneling
- The DNSTunneling operator analyzes DNS response traffic and reports suspicious behaviour that may indicate the presence of DNS tunneling in the network.
- DomainProfiling
- The DomainProfiling operator analyzes DNS response traffic and reports whether or not the behaviour of the domain is suspicious.
- HostProfiling
- The HostProfiling operator analyzes DNS response traffic and reports whether or not the behaviour of the hosts are suspicious.
- PredictiveBlacklisting
- The PredictiveBlacklisting operator analyzes the feature vector produced by the PredictiveBlacklistingFE operator using an SPSS model.
- PredictiveBlacklistingFE
- The PredictiveBlacklistingFE operator ingests DNS response traffic and outputs a feature vector that is used by the PredictiveBlacklisting operator.
- QRadarSink
- This operator allows Streams applications to send syslog messages to a QRadar host.