`trendmicro.wffirewall`¶

$ target-query <path/to/target> -f trendmicro.wffirewall

Details¶
Module	`dissect.target.plugins.apps.av.trendmicro.TrendMicroPlugin`
Output	`records`

Module documentation

TrendMicro antivirus plugin.

Function documentation

Return Trend Micro Worry-free firewall log history records.

Yields TrendMicroWFFirewallRecord with the following fields:

hostname (string): The target hostname.
domain (string): The target domain.
ts (datetime): timestamp.
local_ip (net.ipadress): Local IPv4/IPv6.
remote_ip (net.ipaddress): Remote IPv4/IPv6.
port (uint16): Port of suspicious connection.
direction (string): Direction of the traffic
path (string): Path to object that initiated/received connection
description (string): Description of the detected threat

trendmicro.wffirewall¶

`trendmicro.wffirewall`¶