jhs9396/AgensGraph levenshtein example data script

## AgensGraph levenshtein example data script
-- 1. init data
DROP GRAPH LEVENSHTEIN CASCADE;

CREATE GRAPH LEVENSHTEIN;
SET GRAPH_PATH TO LEVENSHTEIN;

CREATE EXTENSION fuzzystrmatch;


-- A report
CREATE (a:intrusion_set {name:'a'})-[r:used]->(b:ip {value:'222.111.23.45'});

MATCH (a:intrusion_set {name:'a'})
CREATE (a)-[r:used]->(b:domain {value:'abcd.xyz'});

MATCH (a:intrusion_set {name:'a'})
CREATE (a)-[r:used]->(b:filename {value:'setup.exe'});

MATCH (a:intrusion_set {name:'a'})
CREATE (a)-[r:used]->(b:hash {value:'3B0ECD011500F61237C205834DB0E13A'});

MATCH (a:intrusion_set {name:'a'})
CREATE (a)-[r:purpose]->(b:purpose_info {value:'Distribute malicious code'});

MATCH (a:ip), (b:domain)
WHERE a.value = '222.111.23.45'
AND b.value = 'abcd.xyz'
CREATE (a)-[r:related_to]->(b);

MATCH (a:domain), (b:filename)
WHERE a.value = 'abcd.xyz'
AND b.value = 'setup.exe'
CREATE (a)-[r:related_to]->(b);

MATCH (a:filename), (b:hash)
WHERE a.value = 'setup.exe'
AND   b.value = '3B0ECD011500F61237C205834DB0E13A'
CREATE (a)-[r:related_to]->(b);


-- B report
CREATE (a:intrusion_set {name:'b'})-[r:used]->(b:ip {value:'111.222.132.232'});

MATCH (a:intrusion_set {name:'b'})
CREATE (a)-[r:used]->(b:domain {value:'https://caabcd.xyz'});

MATCH (a:intrusion_set {name:'b'})
CREATE (a)-[r:used]->(b:filename {value:'svchost.exe'});

MATCH (a:intrusion_set {name:'b'})
CREATE (a)-[r:used]->(b:hash {value:'C07AC2120B4312B33089C0CC97405876'});

MATCH (a:intrusion_set {name:'b'})
CREATE (a)-[r:purpose]->(b:purpose_info {value:'Ransomware'});

MATCH (a:ip), (b:domain)
WHERE a.value = '111.222.132.232'
AND b.value = 'https://caabcd.xyz'
CREATE (a)-[r:related_to]->(b);

MATCH (a:domain), (b:filename)
WHERE a.value = 'https://caabcd.xyz'
AND b.value = 'svchost.exe'
CREATE (a)-[r:related_to]->(b);

MATCH (a:filename), (b:hash)
WHERE a.value = 'svchost.exe'
AND   b.value = 'C07AC2120B4312B33089C0CC97405876'
CREATE (a)-[r:related_to]->(b);


-- C report
CREATE (a:intrusion_set {name:'c'})-[r:used]->(b:ip {value:'12.3.55.129'});

MATCH (a:intrusion_set {name:'c'})
CREATE (a)-[r:used]->(b:domain {value:'https://bcxz.com'});

MATCH (a:intrusion_set {name:'c'})
CREATE (a)-[r:used]->(b:filename {value:'run.exe'});

MATCH (a:intrusion_set {name:'c'})
CREATE (a)-[r:used]->(b:hash {value:'AA7AC2120B4312B33DDDD0CC97405876'});

MATCH (a:intrusion_set {name:'c'})
CREATE (a)-[r:purpose]->(b:purpose_info {value:'404 Not Found'});

MATCH (a:ip), (b:domain)
WHERE a.value = '12.3.55.129'
AND b.value = 'https://bcxz.com'
CREATE (a)-[r:related_to]->(b);

MATCH (a:domain), (b:filename)
WHERE a.value = 'https://bcxz.com'
AND b.value = 'run.exe'
CREATE (a)-[r:related_to]->(b);

MATCH (a:filename), (b:hash)
WHERE a.value = 'run.exe'
AND   b.value = 'AA7AC2120B4312B33DDDD0CC97405876'
CREATE (a)-[r:related_to]->(b);


-- D report
CREATE (a:intrusion_set {name:'d'})-[r:used]->(b:ip {value:'192.111.145.197'});

MATCH (a:intrusion_set {name:'d'})
CREATE (a)-[r:used]->(b:domain {value:'https://abcd.xyz'});

MATCH (a:intrusion_set {name:'d'})
CREATE (a)-[r:used]->(b:filename {value:'setup.sh'});

MATCH (a:intrusion_set {name:'d'})
CREATE (a)-[r:used]->(b:hash {value:'5ac2d6bbace4222b264cf50436a6398629de772c'});

MATCH (a:intrusion_set {name:'d'})
CREATE (a)-[r:purpose]->(b:purpose_info {value:'person inforamtion crawling'});

MATCH (a:ip), (b:domain)
WHERE a.value = '192.111.145.197'
AND b.value = 'https://abcd.xyz'
CREATE (a)-[r:related_to]->(b);

MATCH (a:domain), (b:filename)
WHERE a.value = 'https://abcd.xyz'
AND b.value = 'setup.sh'
CREATE (a)-[r:related_to]->(b);

MATCH (a:filename), (b:hash)
WHERE a.value = 'setup.sh'
AND   b.value = '5ac2d6bbace4222b264cf50436a6398629de772c'
CREATE (a)-[r:related_to]->(b);
	-- 1. init data
	DROP GRAPH LEVENSHTEIN CASCADE;

	CREATE GRAPH LEVENSHTEIN;
	SET GRAPH_PATH TO LEVENSHTEIN;

	CREATE EXTENSION fuzzystrmatch;


	-- A report
	CREATE (a:intrusion_set {name:'a'})-[r:used]->(b:ip {value:'222.111.23.45'});

	MATCH (a:intrusion_set {name:'a'})
	CREATE (a)-[r:used]->(b:domain {value:'abcd.xyz'});

	MATCH (a:intrusion_set {name:'a'})
	CREATE (a)-[r:used]->(b:filename {value:'setup.exe'});

	MATCH (a:intrusion_set {name:'a'})
	CREATE (a)-[r:used]->(b:hash {value:'3B0ECD011500F61237C205834DB0E13A'});

	MATCH (a:intrusion_set {name:'a'})
	CREATE (a)-[r:purpose]->(b:purpose_info {value:'Distribute malicious code'});

	MATCH (a:ip), (b:domain)
	WHERE a.value = '222.111.23.45'
	AND b.value = 'abcd.xyz'
	CREATE (a)-[r:related_to]->(b);

	MATCH (a:domain), (b:filename)
	WHERE a.value = 'abcd.xyz'
	AND b.value = 'setup.exe'
	CREATE (a)-[r:related_to]->(b);

	MATCH (a:filename), (b:hash)
	WHERE a.value = 'setup.exe'
	AND b.value = '3B0ECD011500F61237C205834DB0E13A'
	CREATE (a)-[r:related_to]->(b);



	-- B report
	CREATE (a:intrusion_set {name:'b'})-[r:used]->(b:ip {value:'111.222.132.232'});

	MATCH (a:intrusion_set {name:'b'})
	CREATE (a)-[r:used]->(b:domain {value:'https://caabcd.xyz'});

	MATCH (a:intrusion_set {name:'b'})
	CREATE (a)-[r:used]->(b:filename {value:'svchost.exe'});

	MATCH (a:intrusion_set {name:'b'})
	CREATE (a)-[r:used]->(b:hash {value:'C07AC2120B4312B33089C0CC97405876'});

	MATCH (a:intrusion_set {name:'b'})
	CREATE (a)-[r:purpose]->(b:purpose_info {value:'Ransomware'});

	MATCH (a:ip), (b:domain)
	WHERE a.value = '111.222.132.232'
	AND b.value = 'https://caabcd.xyz'
	CREATE (a)-[r:related_to]->(b);

	MATCH (a:domain), (b:filename)
	WHERE a.value = 'https://caabcd.xyz'
	AND b.value = 'svchost.exe'
	CREATE (a)-[r:related_to]->(b);

	MATCH (a:filename), (b:hash)
	WHERE a.value = 'svchost.exe'
	AND b.value = 'C07AC2120B4312B33089C0CC97405876'
	CREATE (a)-[r:related_to]->(b);



	-- C report
	CREATE (a:intrusion_set {name:'c'})-[r:used]->(b:ip {value:'12.3.55.129'});

	MATCH (a:intrusion_set {name:'c'})
	CREATE (a)-[r:used]->(b:domain {value:'https://bcxz.com'});

	MATCH (a:intrusion_set {name:'c'})
	CREATE (a)-[r:used]->(b:filename {value:'run.exe'});

	MATCH (a:intrusion_set {name:'c'})
	CREATE (a)-[r:used]->(b:hash {value:'AA7AC2120B4312B33DDDD0CC97405876'});

	MATCH (a:intrusion_set {name:'c'})
	CREATE (a)-[r:purpose]->(b:purpose_info {value:'404 Not Found'});

	MATCH (a:ip), (b:domain)
	WHERE a.value = '12.3.55.129'
	AND b.value = 'https://bcxz.com'
	CREATE (a)-[r:related_to]->(b);

	MATCH (a:domain), (b:filename)
	WHERE a.value = 'https://bcxz.com'
	AND b.value = 'run.exe'
	CREATE (a)-[r:related_to]->(b);

	MATCH (a:filename), (b:hash)
	WHERE a.value = 'run.exe'
	AND b.value = 'AA7AC2120B4312B33DDDD0CC97405876'
	CREATE (a)-[r:related_to]->(b);



	-- D report
	CREATE (a:intrusion_set {name:'d'})-[r:used]->(b:ip {value:'192.111.145.197'});

	MATCH (a:intrusion_set {name:'d'})
	CREATE (a)-[r:used]->(b:domain {value:'https://abcd.xyz'});

	MATCH (a:intrusion_set {name:'d'})
	CREATE (a)-[r:used]->(b:filename {value:'setup.sh'});

	MATCH (a:intrusion_set {name:'d'})
	CREATE (a)-[r:used]->(b:hash {value:'5ac2d6bbace4222b264cf50436a6398629de772c'});

	MATCH (a:intrusion_set {name:'d'})
	CREATE (a)-[r:purpose]->(b:purpose_info {value:'person inforamtion crawling'});

	MATCH (a:ip), (b:domain)
	WHERE a.value = '192.111.145.197'
	AND b.value = 'https://abcd.xyz'
	CREATE (a)-[r:related_to]->(b);

	MATCH (a:domain), (b:filename)
	WHERE a.value = 'https://abcd.xyz'
	AND b.value = 'setup.sh'
	CREATE (a)-[r:related_to]->(b);

	MATCH (a:filename), (b:hash)
	WHERE a.value = 'setup.sh'
	AND b.value = '5ac2d6bbace4222b264cf50436a6398629de772c'
	CREATE (a)-[r:related_to]->(b);