protected void getEventsAlarmData()
{
DataTable dttEventsAlarm = new DataTable();
dttEventsAlarm.Columns.Add(new DataColumn("eventsAlarmId", System.Type.GetType("System.Int32")));
dttEventsAlarm.Columns.Add(new DataColumn("eventsAlarmTittle", System.Type.GetType("System.String")));
dttEventsAlarm.Columns.Add(new DataColumn("checkFrecuency", System.Type.GetType("System.Int32")));
dttEventsAlarm.Columns.Add(new DataColumn("serverity", System.Type.GetType("System.Int32")));
dttEventsAlarm.Columns.Add(new DataColumn("severityDescription", System.Type.GetType("System.String")));
dttEventsAlarm.Columns.Add(new DataColumn("SLATimeToResponse", System.Type.GetType("System.Int32")));
dttEventsAlarm.Columns.Add(new DataColumn("active", System.Type.GetType("System.Boolean")));
List<eventsalarm> lstEventsAlarm = new List<eventsalarm>();
eventsalarmBus oEventsAlarm = new eventsalarmBus();
intrusioneventsBus oIntrusionEvents = new intrusioneventsBus();
severityBus oSeverity = new severityBus();
lstEventsAlarm = oEventsAlarm.eventsalarmGetAll();
if (lstEventsAlarm.Count > 0)
{
foreach (eventsalarm row in lstEventsAlarm)
{
intrusionevents auxIntrusionEvent = new intrusionevents();
severity auxSeverity = new severity();
auxSeverity = oSeverity.severityGetById(row.Severity);
dttEventsAlarm.Rows.Add(row.EventsAlarmId,
row.EventsAlarmTittle,
row.CheckFrecuency,
row.Severity,
auxSeverity.SeverityDescription,
auxSeverity.SLATimeToResponse,
row.Active);
}
gvAlarms.DataSource = dttEventsAlarm;
gvAlarms.DataBind();
}
}
public DataTable getIDPSData()
{
DataSet dtsResult = new DataSet();
DataTable dttResult = new DataTable();
dttResult.Columns.Add(new DataColumn("IDPSId", System.Type.GetType("System.Int32")));
dttResult.Columns.Add(new DataColumn("EventsAlarmId", System.Type.GetType("System.Int32")));
dttResult.Columns.Add(new DataColumn("IDPSEventId", System.Type.GetType("System.Int32")));
dttResult.Columns.Add(new DataColumn("datetime ", System.Type.GetType("System.String")));
dttResult.Columns.Add(new DataColumn("description", System.Type.GetType("System.String")));
dttResult.Columns.Add(new DataColumn("source ", System.Type.GetType("System.String")));
List<eventsalarm> lstEventsAlarm = new List<eventsalarm>();
eventsalarmBus oEventsAlarm = new eventsalarmBus();
ids auxIDPS = new ids();
idsBus oIDPSBus = new idsBus();
lstEventsAlarm = oEventsAlarm.eventsalarmGetAll();
if (lstEventsAlarm.Count > 0)
{
foreach (eventsalarm row in lstEventsAlarm)
{
switch (row.IdsId)
{
case 1: //ossec
auxIDPS = oIDPSBus.idsGetById(row.IdsId);
dtsResult= requestOSSECEvents( auxIDPS.DatabaseHost,
auxIDPS.DatabaseName,
auxIDPS.DatabaseUser,
auxIDPS.DatabasePass,
row.IdsSignatureCategoryId);
if (dtsResult.Tables[0].Rows.Count > 0)
{
foreach(DataRow rowResult in dtsResult.Tables[0].Rows)
{
dttResult.Rows.Add(row.IdsId,
row.EventsAlarmId,
Convert.ToInt32(rowResult[0].ToString()),
rowResult[1].ToString(),
rowResult[2].ToString(),
rowResult[3].ToString());
}
}
break;
case 2: //snort
case 3: //suricata
auxIDPS = oIDPSBus.idsGetById(row.IdsId);
dtsResult= requestbarnyard2Events(auxIDPS.DatabaseHost,
auxIDPS.DatabaseName,
auxIDPS.DatabaseUser,
auxIDPS.DatabasePass,
row.IdsSignatureCategoryId);
if (dtsResult.Tables[0].Rows.Count > 0)
{
foreach (DataRow rowResult in dtsResult.Tables[0].Rows)
{
dttResult.Rows.Add(row.IdsId,
row.EventsAlarmId,
Convert.ToInt32(rowResult[0].ToString()),
rowResult[1].ToString(),
rowResult[2].ToString(),
rowResult[3].ToString());
}
}
break;
case 4: //bro
auxIDPS = oIDPSBus.idsGetById(row.IdsId);
dtsResult = requestBroEvents(auxIDPS.DatabaseHost,
auxIDPS.DatabaseName,
auxIDPS.DatabaseUser,
auxIDPS.DatabasePass,
row.IdsSignatureCategoryId);
if (dtsResult.Tables[0].Rows.Count > 0)
{
foreach (DataRow rowResult in dtsResult.Tables[0].Rows)
{
dttResult.Rows.Add(row.IdsId,
row.EventsAlarmId,
Convert.ToInt32(rowResult[0].ToString()),
rowResult[1].ToString(),
rowResult[2].ToString(),
rowResult[3].ToString());
}
}
break;
}
}
}
return dttResult;
}
