Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Filtering][Suggestion] Omitting keywords / terms from the results #101

Open
mgagnequebec opened this issue Dec 10, 2020 · 2 comments
Open

[Filtering][Suggestion] Omitting keywords / terms from the results #101

mgagnequebec opened this issue Dec 10, 2020 · 2 comments

Comments

@mgagnequebec
Copy link

mgagnequebec commented Dec 10, 2020
edited

Hello! This is my first entry. Been trying out opensnitch for a while and thought I could add a suggestion :)

Describe the bug
When there are results in the list of recorded entries, user can notice that many unwanted information can clog the view. Especially when trying to analyze and find unknown or, suspicious requests. In that case, it is not always possible to use the filters because user does not know what he's looking for. But does know what he would like to get rid of. To make the list easier to browse.

To Reproduce Example:
You browse the internet while opensnitch is recording. Then, after a while you start analyzing the recorded results and see many request to google and facebook. Those are making a lot of noise and what the user is looking for might be very subtle (but unknown). Trying to use the filter only allows to select what the user wants too see. It would be nice to add arguments like - facebook, -"*google" so that the list becomes easier to read without showing the entries entered (the matching terms entered)as "omitting filters"

Steps to reproduce the behavior:

  1. Make sure opensnitch is recording
  2. Browse the internet to various websites for a few minutes
  3. Go back to opensnitch results
  4. Notice that the list includes common names / terms that would be convenient to filter out.

Post error logs:
There is no error for this suggestion :) but I could say "look at the available option in the filter field, they are allowing to select / isolate entries but not, removing entries"

Expected behavior (optional)
Entering terms in the filter box, so that the list removes what is matching and being able to add multiple terms by separating them with commas.
input example: (
- facebook*, -*google*,-*amazon*

would make these matching entries disappear from the result list

Screenshots
sorry no screenshot

OS (please complete the following information):

  • OS: Any OS, kernel, version. This would be great to have on all of them I think
@mgagnequebec mgagnequebec changed the title [Filtering][Suggestion] Omitting keywords / terms from the [Filtering][Suggestion] Omitting keywords / terms from the results Dec 10, 2020
@themighty1
Copy link

@mgagnequebec , thank you for the suggestion.
With some recent changes I made to how the filter string is parsed, it would be quite easy to implement what you are asking.
It would be up to the user to type in a correct regular expression. We could then forward that regular expression to the python as-is to find matching strings.

@mgagnequebec
Copy link
Author

Hi @themighty1, this is great! Thanks for the reply. If you do implement it, I'd love to test. I already use this app alot on my main pc so, I could help out if possible.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@themighty1 @mgagnequebec