mirror of
https://github.com/zeek/zeek.git
synced 2025-10-03 23:28:20 +00:00
Integrate MySQL with the software framework
This commit is contained in:
Vlad Grigorescu
parent
e2ad93c543
commit
119ad59b70
1 changed files with 20 additions and 0 deletions
20
scripts/policy/protocols/mysql/software.bro
Normal file
20
scripts/policy/protocols/mysql/software.bro
Normal file
|
|
@ -0,0 +1,20 @@
|
||||||
|
##! Software identification and extraction for MySQL traffic.
|
||||||
|
|
||||||
|
@load base/frameworks/software
|
||||||
|
|
||||||
|
module MySQL;
|
||||||
|
|
||||||
|
export {
|
||||||
|
redef enum Software::Type += {
|
||||||
|
## Identifier for MySQL servers in the software framework.
|
||||||
|
SERVER,
|
||||||
|
};
|
||||||
|
}
|
||||||
|
|
||||||
|
event mysql_server_version(c: connection, ver: string)
|
||||||
|
{
|
||||||
|
if ( ver == "" )
|
||||||
|
return;
|
||||||
|
|
||||||
|
Software::found(c$id, [$unparsed_version=ver, $host=c$id$resp_h, $software_type=SERVER]);
|
||||||
|
}
|
||||||
Loading…
Add table
Add a link
Reference in a new issue