Mirror/zeek - git.uphillsecurity.com: We code.

3780 commits 386 branches 195 tags 258 MiB

Author	SHA1	Message	Date
Seth Hall	32f1c736f7	Some script reorg and a new intel extension script. - policy/frameworks/intel/seen is the new location for the scripts that push data into the intel framework for checking. - The new policy/frameworks/intel/do_notice script adds an example mechanism for data driven notices.	2013-07-29 16:40:16 -04:00
Seth Hall	9b444b2617	Updates for the Intel Framework. - Intel importing format has changed (refer to docs). - All string matching is now case insensitive. - SMTP intel script has been updated to extract email addresses correctly. - Small fix sneaking into the smtp base script to actually extract individual email addresses in the To: field correctly.	2013-07-19 13:16:12 -04:00
Seth Hall	375769f42c	Added intelligence check for "Received" path checking and a bit of reshuffling.	2012-09-28 22:07:40 -04:00

Author

SHA1

Message

Date

Seth Hall

32f1c736f7

Some script reorg and a new intel extension script.

- policy/frameworks/intel/seen is the new location for the scripts
    that push data into the intel framework for checking.

  - The new policy/frameworks/intel/do_notice script adds an example
    mechanism for data driven notices.

2013-07-29 16:40:16 -04:00

Seth Hall

9b444b2617

Updates for the Intel Framework.

- Intel importing format has changed (refer to docs).

 - All string matching is now case insensitive.

 - SMTP intel script has been updated to extract email
   addresses correctly.

 - Small fix sneaking into the smtp base script to actually
   extract individual email addresses in the To: field
   correctly.

2013-07-19 13:16:12 -04:00

Seth Hall

375769f42c

Added intelligence check for "Received" path checking and a bit of reshuffling.

2012-09-28 22:07:40 -04:00

Renamed from scripts/policy/frameworks/intel/user-agents.bro (Browse further)

3 commits