From 47b8c9861bac8b6fdfe3b3ed92e2528434ea3250 Mon Sep 17 00:00:00 2001
From: Greg DiCristofaro <gregd@basistech.com>
Date: Tue, 1 Dec 2020 14:10:43 -0500
Subject: [PATCH] added TSK_DOMAIN_CATEGORY artifact

---
 bindings/java/doxygen/artifact_catalog.dox             | 10 ++++++++++
 .../org/sleuthkit/datamodel/BlackboardArtifact.java    |  7 ++++++-
 .../java/src/org/sleuthkit/datamodel/Bundle.properties |  1 +
 3 files changed, 17 insertions(+), 1 deletion(-)

diff --git a/bindings/java/doxygen/artifact_catalog.dox b/bindings/java/doxygen/artifact_catalog.dox
index c333ca631..985e68b11 100644
--- a/bindings/java/doxygen/artifact_catalog.dox
+++ b/bindings/java/doxygen/artifact_catalog.dox
@@ -190,6 +190,16 @@ Details about a device data source.
 - TSK_IMSI (IMSI number of the device)
 
 
+---
+## TSK_DOMAIN_CATEGORY
+Details about the category of the domain.
+
+### REQUIRED ATTRIBUTES
+- TSK_NAME The category name
+- TSK_DOMAIN The domain of the category
+
+
+
 ---
 ## TSK_EMAIL_MSG
 An email message found in an application file or database.
diff --git a/bindings/java/src/org/sleuthkit/datamodel/BlackboardArtifact.java b/bindings/java/src/org/sleuthkit/datamodel/BlackboardArtifact.java
index 74fed7fba..d2dfb4676 100644
--- a/bindings/java/src/org/sleuthkit/datamodel/BlackboardArtifact.java
+++ b/bindings/java/src/org/sleuthkit/datamodel/BlackboardArtifact.java
@@ -1295,7 +1295,12 @@ public enum ARTIFACT_TYPE implements SleuthkitVisitableItem {
 		 * Indicates that the file had a yara pattern match hit.
 		 */
 		TSK_YARA_HIT(66, "TSK_YARA_HIT",	
-				bundle.getString("BlackboardArtifact.tskWebAccountType.text"));		
+				bundle.getString("BlackboardArtifact.tskWebAccountType.text")),
+		/**
+		 * A match for a domain category (i.e. webmail).
+		 */
+		TSK_DOMAIN_CATEGORY(67, "TSK_DOMAIN_CATEGORY",	
+				bundle.getString("BlackboardArtifact.tskDomainCategoryType.text"));		
 
         /* To developers: For each new artifact, ensure that:
          * - The enum value has 1-line JavaDoc description
diff --git a/bindings/java/src/org/sleuthkit/datamodel/Bundle.properties b/bindings/java/src/org/sleuthkit/datamodel/Bundle.properties
index c7efb626b..73dd1ca76 100644
--- a/bindings/java/src/org/sleuthkit/datamodel/Bundle.properties
+++ b/bindings/java/src/org/sleuthkit/datamodel/Bundle.properties
@@ -63,6 +63,7 @@ BlackboardArtifact.tskDeletedProg.text=Deleted Programs
 BlackboardArtifact.tskUserDeviceEvent.text=User Device Events
 BlackboardArtifact.shortDescriptionDate.text=at {0}
 BlackboardArtifact.tskAssociatedObject.text=Associated Object
+BlackboardArtifact.tskDomainCategoryType.text=Domain Category
 BlackboardAttribute.tskAccountType.text=Account Type
 BlackboardAttribute.tskUrl.text=URL
 BlackboardAttribute.tskDatetime.text=Date/Time
-- 
GitLab