Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-03 15:18:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/scripts
History
Seth Hall 003b32f904 Fixes to DCE_RPC analysis 
- Previously there was an (incorrect) assumption that a TCP conneciton
   would only ever have one DCE_RPC binding.  That assumption was
   incorrect and with named pipes over SMB there can be multiple
   concurrent DCE_RPC bindings.  This commit fixes that assumption by
   dynamically creating a new DCE_RPC analyzer whenever a new, unknown
   binding is created.
 - There is a crash fix in how string handling in the bind_ack message
   was done.
 - Named pipe handling over SMB1 is still not working quite right
   and problems will show up with multiplexed DCE_RPC bindings.
2016-04-06 12:37:09 -04:00
..
base Fixes to DCE_RPC analysis 2016-04-06 12:37:09 -04:00
broxygen Fix Broxygen coverage. 2015-03-13 14:53:11 -05:00
policy Update windows-version-detection.bro 2015-12-04 09:46:14 -05:00
site Merge branch 'master' of https://github.com/aaronmbr/bro 2015-07-23 13:05:28 -07:00
CMakeLists.txt Don't install test-all-policy.bro script as it's for testing only. 2011-10-12 12:42:12 -05:00
test-all-policy.bro Allow for logging of the VLAN data about a connection in conn.log 2015-07-22 14:13:17 -04:00