Differences

This shows you the differences between two versions of the page.

--- pom-ng:lua [2012/10/24 12:58] – [Using plugins] 2001:7e8:2221:600:8cad:5bff:feb8:cbe
+++ pom-ng:lua [2020/05/26 21:59] (current) – external edit 127.0.0.1
@@ Line 9: / Line 9: @@
 ==== Register an output ====
-To create a new output, you simply call **output.new(name, parameters)**. Each parameter is declared the following way : **{name, ptype, default_value, description}**.
+To create a new output, you simply call **output.new(name, parameters)**. Each parameter is declared the following way : **{name, ptype, default_value, description}**. The output will be registered in the system automatically.
-After creating your output you need to register it. This is achieved by calling **output.register(my_output)**. When loading the lua script, the function **<filename>_register()** will be called. This means that if you save your output in the file **my_output.lua**, the function **my_output_register()** will be called when loading the lua script to register the output with the system.
 When the output is started, the function **open()** will be called. Similarily, the function **close()** will be called when the output is stopped.
@@ Line 30: / Line 28: @@
         local param2_value = self:param_get("param2_name")
         print("My output started. Param 2 value is " .. param2_value)
-end
-function my_output_register()
-        pom.output.register(my_output)
 end
@@ Line 176: / Line 170: @@
         local key, value
         key, value = data_iter()
-        it not k then break end
+        if not key then break end
-        local value_type = type(v)
+        local value_type = type(value)
         if value_type == "userdata" then
                 print("Data has key " .. key .. " which value is a data_item object")
@@ Line 194: / Line 188: @@
 == Parameters: ==
   * //data_item//: A data_item object from a data object.
+=== pom.dns.forward_lookup(name) ===
+Perform a forward lookup for a hostname using the offline DNS database.
+== Parameters: ==
+  * //name//: A name to lookup
+=== pom.dns.reverse_lookup(name) ===
+Perform a reverse lookup for a hostname or IP using the offline DNS database. It will try to find out what was the original query that points to the provided name.
+== Parameters: ==
+  * //name//: A name or IP to lookup
 === pom.log(level, message) ===
@@ Line 211: / Line 217: @@
 == Returns: ==
 An output class.
-=== pom.output.register(output_class) ===
-Registers a new output.
-== Parameters: ==
-  * //output_class//: A output class created with pom.output.new().
 === pom.plugin.new(plugin_name) ===
@@ Line 250: / Line 250: @@
 Returns a data object containing all the information related to this event.
+=== event.timestsamp ===
+== Returns: ==
+Returns the timestamp when the event started in micro seconds since epoch.
 ==== output ====
@@ Line 257: / Line 260: @@
 Called when an instance of the output is stopped. This function must be implemented by addon.
-=== output:event_listen_start(event_name, process_begin_function, process_end_function) ===
+=== output:event_listen_start(event_name, process_begin_function, process_end_function, filter) ===
 Call this function to start listening to a particular event. You must call output:event_listen_stop(event_name) when you are done listening to that particular event.
@@ Line 264: / Line 267: @@
   * //process_begin_function//: Function that will be called when an event starts. Its prototype is process_function(event).
   * //process_end_function//: Function that will be called when an event stops. Its prototype is process_function(event).
+  * //filter//: String containing an event filter, optional.
 === output:event_listen_stop(event_name) ===
@@ Line 274: / Line 278: @@
 Called when an instance of the output is started. This function must be implemented by addon.
-=== output:pload_listen_start(open_function, write_function, close_function) ===
+=== output:pload_listen_start(open_function, write_function, close_function, filter) ===
 Start listening to payloads. Every payload will be processed. It's up to the output to filter them. If you don't need a specific function, you can specify nil instead.
@@ Line 281: / Line 285: @@
   * //write_function//: Function that will be called when new data from a payload are available. Its prototype is write_function(payload_priv, payload_data). It must return **true** to continue processing the payload, other **false**.
   * //close_function//: Function that will be called once a payload has been fully processed. Its prototype is close_function(payload_priv).
+  * //filter//: Pload filter to use, optional.
 == Parameters of the above functions: ==
@@ Line 297: / Line 302: @@
 ==== pload ====
+=== pload.data ===
+== Returns: ==
+Returns the data related to this payload. It contains the data that the analyzer identified. For example, images will contain 'height' and 'width'.
 === pload.event ===
@@ Line 303: / Line 313: @@
 Returns the event related to this payload.
-=== pload.data ===
+=== pload.filename ===
 == Returns: ==
-Returns the data related to this payload. It contains the data that the analyzer identified. For example, images will contain 'height' and 'width'.
+Returns the pload filename if it has been set, nil otherwise.
+=== pload.parent ===
+== Returns: ==
+Returns the pload that was the parent of the present pload if any.
 === pload.type ===
@@ Line 340: / Line 355: @@
 Close the plugin and releases all the associated data.
-=== plugin:event_listen_start(event_name) ===
+=== plugin:event_listen_start(event_name, filter) ===
 Have the plugin listens to a specific event and process it.
 == Parameters: ==
   * //event_name//: Name of the event to listen to.
+  * //filter//: String containing an event filter, optional.
 === plugin:event_listen_stop(event_name) ===
@@ Line 378: / Line 394: @@
 === plugin:pload_process(pload, parameters) ===
-Process a specific payload.
+Process a specific payload. **It should only be used in the pload_open callback function of the output !**
 == Parameters: ==