6 commits

Author	SHA1	Message	Date
Arne Welzel	43ab74b70f	Merge branch 'sqli-spaces-encode-to-plus' of https://github.com/cooper-grill/zeek ... * 'sqli-spaces-encode-to-plus' of https://github.com/cooper-grill/zeek: account for spaces encoding to plus signs in sqli regex detection (cherry picked from commit 5200b84fb3)	2024-11-19 09:33:22 -07:00
Jon Siwek	ae923106f1	GH-352: Improve HTTP::match_sql_injection_uri regex ... Changes \x00-\x37 ranges to \x00-\x1f with assumption that the former was attempting to match ASCII control characters, but mistook an octal range for hex. This change reduces some false positives.	2020-11-12 16:19:35 -08:00
Jon Siwek	7967a5b0aa	General btest cleanup ... - Use `-b` most everywhere, it will save time. - Start some intel tests upon the input file being fully read instead of at an arbitrary time. - Improve termination condition for some sumstats/cluster tests. - Filter uninteresting output from some supervisor tests. - Test for `notice_policy.log` is no longer needed.	2020-08-11 11:26:22 -07:00
Robin Sommer	789cb376fd	GH-239: Rename bro to zeek, bro-config to zeek-config, and bro-path-dev to zeek-path-dev. ... This also installs symlinks from "zeek" and "bro-config" to a wrapper script that prints a deprecation warning. The btests pass, but this is still WIP. broctl renaming is still missing. #239	2019-05-01 21:43:45 +00:00
Jon Siwek	a994be9eeb	Merge remote-tracking branch 'origin/topic/seth/zeek_init' ... * origin/topic/seth/zeek_init: Some more testing fixes. Update docs and tests for bro_(init|done) -> zeek_(init|done) Implement the zeek_init handler.	2019-04-19 11:24:29 -07:00
Jon Siwek	1e57e3f026	Use .zeek file suffix in unit tests	2019-04-16 16:08:57 -07:00

Renamed from testing/btest/scripts/policy/protocols/http/test-sql-injection-regex.bro (Browse further)