5 commits

Author	SHA1	Message	Date
Robin Sommer	cbb31cedc3	Merge remote-tracking branch 'origin/topic/dina/modbus' into topic/robin/modbus-merge ... * origin/topic/dina/modbus: put some make-up on Modbus analyser Modbus analyser, added support: FC=20,21 Modbus analyzer,added support: FC=1,2,15,24 Modbus analyzer, current support: FC=3,4,5,6,7,16,22,23 I cleaned up the code a bit, mainly layout style. I did not include the *.bro scripts for now, but a test script ../testing/btest/scripts/base/protocols/modbus/events.bro that prints out the value for each event. Merged the Modbus traces from the ics repository into a single trace as input for the test. They currently trigger 20 of the 34 events. Addresses #870.	2012-08-29 17:58:41 -07:00
Seth Hall	e2da969415	Return of Robin's old SOCKS analyzer/decapsulator and tunnel code checkpoint. ... - More discussion is needed to figure out how to integrate the SOCKS analyzer best. - Tunnels framework now logs for the SOCKS analyzer.	2012-04-21 23:50:09 -04:00
Seth Hall	69ab13c88f	Added some scripts for a tunnels framework. ... - The AYIYA analyzer is now enabled on it's default port.	2012-04-21 15:10:30 -04:00
Seth Hall	3919a35b9b	Metrics framework update. Mostly to make metrics work on clusters. ... - Metrics now work on cluster deployments with no caveats. It should be completely transparent. Intermediate updates to speed some detection will come later.	2011-08-15 15:57:48 -04:00
Seth Hall	c4f4df6a79	Renaming the default loaded "init" scripts and added command line arg for "bare-mode" ... - bro.init was renamed to base/init-bare.bro and base/all.bro was renamed to init-default.bro. - To run in "bare mode" with only the init-bare.bro and no other scripts from base/, use either -b or --bare-mode. - The environment variable to run in "bare mode" has been removed.	2011-08-08 13:40:43 -04:00

Renamed from scripts/base/all.bro (Browse further)