Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-04 07:38:19 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
989 commits 385 branches 195 tags 258 MiB
Commit graph

6 commits

Author SHA1 Message Date
Seth Hall
e792faab04 File identification and hashing now working and improved. 
- File type identification falls back to libmagic
  if nothing is detected by the sigs.
- File extraction broken and waiting upon a fix for
  ticket #474
 2011-06-15 13:11:11 -04:00
Seth Hall
ad66c9c4d9 Script cleanup. 
- Defaults for all built-in asset tracking changed to LOCAL_HOSTS
- Added a tuning script for changing asset tracking
  to ALL_HOSTS in all of the core scripts that do
  asset tracking.
- Default Notice::policy files notices instead of alarming on them.
- Moved KnownHosts::Info back to export section because
  the log_known_hosts event can't be defined in the
  export section without it.
- Moved the Malware Hash Registry detection out of
  the core HTTP protocol scripts and added it to the
  all.bro script.
 2011-06-15 11:27:39 -04:00
Seth Hall
d3d9fedd2c Reshuffling notice declarations to make them exported. 
- Notices were not available outside of their namespaces.
 2011-06-09 11:59:06 -04:00
Seth Hall
29bfc5eff1 Fixed some new bugs with file extraction. 2011-06-07 23:12:49 -04:00
Seth Hall
0c1dac2fce Cleaned up and normalized file extraction across protocols. 2011-06-07 23:08:37 -04:00
Seth Hall
ae3bd76769 Reorganizing the policy scripts for clarity. 2011-06-01 10:07:53 -04:00
Renamed from policy/http/file-extract.bro (Browse further)