Jon Siwek
5fa9c5865b
Factor out the need for a tag field in Files::AnalyzerArgs record.
...
This cleans up internals of how analyzer instances get identified by the
tag plus any args given to it and doesn't change script code a user
would write.
2013-07-31 09:48:19 -05:00
Seth Hall
58d133e764
Merge remote-tracking branch 'origin/master' into topic/seth/faf-updates
...
Conflicts:
scripts/base/frameworks/files/main.bro
scripts/base/init-bare.bro
scripts/base/protocols/ftp/file-analysis.bro
scripts/base/protocols/http/file-analysis.bro
scripts/base/protocols/irc/file-analysis.bro
scripts/base/protocols/smtp/file-analysis.bro
src/const.bif
src/event.bif
src/file_analysis/Analyzer.h
src/file_analysis/file_analysis.bif
2013-07-05 02:13:27 -04:00
Seth Hall
df2841458d
Large overhaul in name and appearance for file analysis.
2013-07-05 02:00:14 -04:00
Robin Sommer
d8b05af7e5
Merge remote-tracking branch 'origin/topic/jsiwek/faf-cleanup'
...
Closes #1002 .
* origin/topic/jsiwek/faf-cleanup:
Move file analyzers to new plugin infrastructure.
Add a general file analysis overview/how-to document.
Improve file analysis doxygen comments.
Improve tracking of HTTP file extraction (addresses #988 ).
Fix HTTP multipart body file analysis.
Remove logging of analyzers field of FileAnalysis::Info.
Remove extraction counter in default file extraction scripts.
Remove FileAnalysis::postpone_timeout.
Make default get_file_handle handlers &priority=5.
Add input interface to forward data for file analysis.
File analysis framework interface simplifications.
2013-07-03 16:27:16 -07:00
Jon Siwek
7c7b6214a6
Move file analyzers to new plugin infrastructure.
2013-06-10 15:50:18 -05:00
Jon Siwek
f82167d067
Improve file analysis doxygen comments.
2013-05-23 10:22:49 -05:00
Robin Sommer
7610aa31b6
Various smalle tweaks in preparation for merging.
2013-05-13 16:47:00 -07:00
Jon Siwek
b8c98b8bf7
FileAnalysis: change terminology s/action/analyzer
2013-04-11 14:53:54 -05:00
