Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-06 00:28:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
1750 commits 387 branches 195 tags 258 MiB
Commit graph

1750 commits

This branch
This branch
All branches
Author SHA1 Message Date
Robin Sommer
73d5643302 A new notice script that pretty-prints alarms in the summary email. 
It works already, but the actual pretty-printing is still missing.
 2011-10-26 10:40:12 -07:00
Robin Sommer
2f2fad1f80 Adding a dummy log writer WRITER_NONE that just discards everything. 
This can be handy when oen doesn't want any output but still get
access to filter functionality, including rotation; and also for
general testing.
 2011-10-26 10:39:56 -07:00
Jon Siwek
f98dac9571 Update submodules 2011-10-26 10:15:58 -05:00
Jon Siwek
fe5d876364 Update bro-aux submodule 2011-10-26 09:47:08 -05:00
Robin Sommer
06d9eb5fa0 Updating submodule(s). 2011-10-26 07:39:46 -07:00
Seth Hall
098134d2fa Updated unit test baselines. 
- Some (all?) of the DNS servers aren't being detected
  anymore because the test tracefile isn't long enough.
  Logging servers is delayed a 5 minutes in case a better
  result comes in.
 2011-10-26 09:36:04 -04:00
Robin Sommer
e620d33efc Updating submodule(s). 2011-10-25 20:23:22 -07:00
Robin Sommer
cbc357e6b5 Updating submodule(s). 2011-10-25 20:20:22 -07:00
Robin Sommer
d429001ace Updating submodule(s). 2011-10-25 20:17:41 -07:00
Robin Sommer
1d5d1780c7 Updating submodule(s). 2011-10-25 20:17:03 -07:00
Robin Sommer
f0f19ac06b Ignore tmp dir. 2011-10-25 19:59:25 -07:00
Robin Sommer
603bcf8243 Updating submodule(s). 2011-10-25 19:58:50 -07:00
Robin Sommer
7cda6bd5ed Updating submodule(s). 2011-10-25 19:58:00 -07:00
Robin Sommer
aaff687db7 Updating submodule(s). 2011-10-25 19:54:46 -07:00
Robin Sommer
5968168ee8 Updating submodule(s). 2011-10-25 19:53:42 -07:00
Robin Sommer
f61fcf219a Fixing bug in log managers predicate evaluation. 2011-10-25 19:08:56 -07:00
Robin Sommer
e78a3c35e5 Updating submodule(s). 2011-10-25 18:17:25 -07:00
Robin Sommer
fc9f5be313 Updating submodule(s). 2011-10-25 18:16:18 -07:00
Robin Sommer
c0ff6ca2ff Updating submodule(s). 2011-10-25 18:12:28 -07:00
Robin Sommer
0335b9c8f6 Updating submodule(s). 2011-10-25 18:11:47 -07:00
Robin Sommer
563b0040e0 Updating submodule(s). 2011-10-25 17:58:30 -07:00
Robin Sommer
f25cd967a0 Updating submodule(s). 2011-10-25 17:57:53 -07:00
Robin Sommer
544497b4c5 Updating submodule(s). 2011-10-25 17:50:10 -07:00
Robin Sommer
8eb6b84c53 Updating submodule(s). 2011-10-25 17:46:24 -07:00
Robin Sommer
a0ff75ecd6 Different way to figure out the repository name. 
My directory was called 'master' so I got 'master-1.6.tar.gz'.
 2011-10-25 17:35:49 -07:00
Robin Sommer
4cdff8ffd8 Extending .gitignore other external test-suites as well. 2011-10-25 16:33:17 -07:00
Robin Sommer
7a63191a06 Updating submodule(s). 2011-10-25 16:31:05 -07:00
Seth Hall
17d03c9936 Fix a problem with DNS servers being logged that aren't actually servers. 2011-10-25 16:20:29 -04:00
Seth Hall
3d6d75b647 Updating test baselines for recent changes. 2011-10-25 14:51:32 -04:00
Seth Hall
c938f11d84 Merge branch 'master' of ssh://git.bro-ids.org/bro 2011-10-25 14:26:50 -04:00
Seth Hall
7c4b6cf411 Removed :bro doc directives from notice documentation. 2011-10-25 14:26:19 -04:00
Jon Siwek
55978d1c18 Changed generated root cert DN format for RFC2253 compliance. 2011-10-25 11:09:31 -05:00
Seth Hall
88e988f79a First commit of notice framework docs. 2011-10-25 11:47:47 -04:00
Seth Hall
b2323305f8 Adding sub messages to emails. 2011-10-25 11:36:24 -04:00
Seth Hall
4753f2aeca Adding extra fields to smtp and http to track transaction depth. 
- This will for help linking in analysis scripts and databases later.

- Test baseline updates coming in a few minutes.
 2011-10-25 11:34:48 -04:00
Seth Hall
2131468b08 Merging this branch. It's working better than the existing code. 2011-10-25 11:17:19 -04:00
Seth Hall
c3c38fa54e Bumping the bro-aux submodule. 2011-10-25 11:16:47 -04:00
Seth Hall
dcc8d8456a Removed some fields from http analysis that weren't commonly needed or were wrong. 2011-10-25 09:32:31 -04:00
Seth Hall
320739e183 Updated/fixed MSIE version parsing in the software framework. 2011-10-25 09:30:06 -04:00
Jon Siwek
522e0e4d46 Update Mozilla trust roots to index certs by subject distinguished name. 2011-10-25 07:52:24 -05:00
Seth Hall
e6a8489780 Testing a fix for SSH login detection heuristic. 2011-10-25 00:01:04 -04:00
Seth Hall
7f838b6181 Merge branch 'topic/seth/weird-updates' 2011-10-24 23:47:31 -04:00
Robin Sommer
7d775e2e3f Updating submodule(s). 2011-10-24 09:35:51 -07:00
Robin Sommer
7d2442aceb Merge branch 'master' of ssh://git.bro-ids.org/bro 2011-10-24 09:35:36 -07:00
Robin Sommer
7a5cae1e99 Updating submodule(s). 2011-10-24 09:35:20 -07:00
Seth Hall
ff51068598 Fixing a bug with handling downgrade from weird conn to orig. 2011-10-22 01:13:15 -04:00
Seth Hall
7746f5b223 Final notice email tuning. 2011-10-21 23:08:56 -04:00
Seth Hall
0e79ec46b6 More notice email tuning. 2011-10-21 22:58:44 -04:00
Seth Hall
75e5caeff5 Attempt to make hostname notice email extension work and small format adjustments. 2011-10-21 22:51:56 -04:00
Seth Hall
9413e7f58c Merge branch 'master' of ssh://git.bro-ids.org/bro 2011-10-21 22:41:53 -04:00