Details
-
New Feature
-
Status: Resolved
-
Major
-
Resolution: Done
-
1.21.0
-
None
Description
- Threat Hunting Functions
These functions are useful for doing threat hunting with Apache Drill. These were inspired by huntlib.[1]
The functions are:
- `punctuation_pattern(<string>)`: Extracts the pattern of punctuation in text.
- `entropy(<string>)`: This function calculates the Shannon Entropy of a given string of text.
- `entropyPerByte(<string>)`: This function calculates the Shannon Entropy of a given string of text, normed for the string length.