Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-12 11:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Some changes to fix PE analyzer on master.

Browse source
This commit is contained in:
Vlad Grigorescu 2015-04-07 14:45:15 -07:00
parent 010cd80f2f
commit b4498a4142
3 changed files with 16 additions and 37 deletions
Download patch file Download diff file Expand all files Collapse all files

4
scripts/base/files/pe/main.bro
View file

@ -82,9 +82,9 @@ event file_state_remove(f: fa_file)
Log::write(LOG, f$pe);
}
event file_new(f: fa_file)
event file_mime_type(f: fa_file, mime_type: string)
{
if ( f?$mime_type && f$mime_type == /application\/x-dosexec.*/ )
if ( mime_type == /application\/x-dosexec.*/ )
{
Files::add_analyzer(f, Files::ANALYZER_PE);
}