192.168.136.192,2848,100.100.100.212,6667,"other"
100.100.100.212,6667,192.168.136.192,2848,"other"
100.100.100.212,6667,192.168.136.192,2848,"CHAT IRC message"
192.168.61.74,4662,69.192.30.179,80,"other"
192.168.107.87,4662,69.192.30.179,80,"other"
192.168.107.87,4662,69.192.30.179,80,"infection"
192.168.177.85,4662,69.192.30.179,80,"infection"
192.168.177.85,4662,69.192.30.179,80,"other"
192.168.118.168,4662,69.192.30.179,80,"infection"
192.168.118.168,4662,69.192.30.179,80,"other"
192.168.110.111,4662,69.192.30.179,80,"infection"
到目前为止我已经可以删除副本了现在我需要删除
还有src=src&dest=dest | |;src=dest&dest=source&删除带有“other”的那些,如果它们的=被标记为“infected”
这就是我目前为止要移除的复制品
with open(r'alerts.csv','r') as in_file, open('alertsfix.csv','w') as out_file:
seen = set() # set for fast O(1) amortized lookup
for line in in_file:
if line in seen: continue # skip duplicate
seen.add(line)
out_file.write(line)
src/prt/dest/prt/msg
1. a/a1/b/b1/c
2. 2a/2a1/2b/2b1/2c
条件:
if a==2b && a1==2b1 && b==2a && b1==2a1 c==2c
delete one of them being they are equal
或
if a==2b && a1==2b1 && b==2a && b1==2a1 ( c==other ) &&( 2c=="infected" || 2c=='CNC")
delete one that has message "other"