From 28c5d9d23d54c31fcd9afaff67283e2a60e40a0b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Pavel=20K=C3=A1cha?= <ph@cesnet.cz>
Date: Thu, 25 Apr 2024 21:06:39 +0200
Subject: [PATCH] LaBrea: Remove cruft template definition

---
 hp-labrea/labrea-idea.py | 6 ------
 1 file changed, 6 deletions(-)

diff --git a/hp-labrea/labrea-idea.py b/hp-labrea/labrea-idea.py
index 9931774..9ed25b4 100755
--- a/hp-labrea/labrea-idea.py
+++ b/hp-labrea/labrea-idea.py
@@ -283,21 +283,18 @@ class IdeaGen(object):
             "connect": {
                 "category": ["Recon.Scanning"],
                 "description": "TCP connections/scan",
-                "template": "labrea-001",
                 "note": "Connections from remote host to never assigned IP",
                 "proto": ["tcp"]
             },
             "ping": {
                 "category": ["Recon.Scanning"],
                 "description": "Ping scan",
-                "template": "labrea-002",
                 "note": "Ping requests from remote host to never assigned IP",
                 "proto": ["icmp"]
             },
             "synack": {
                 "category": ["Availability.DoS"],
                 "description": "Unsolicited TCP SYN/ACK connections/scan",
-                "template": "labrea-003",
                 "note": "Unsolicited SYN/ACK packet received from remote host to never assigned IP",
                 "source_type": ["Backscatter"],
                 "source_to_target": True,
@@ -348,9 +345,6 @@ class IdeaGen(object):
             "CeaseTime": self.format_timestamp(cease_time),
             "ConnCount": count,
             "Note": tmpl["note"],
-            "_CESNET": {
-                "EventTemplate": tmpl["template"],
-            },
             "Target": itargets,
             "Node": [inode]
         }
-- 
GitLab