mirror of
https://github.com/zeek/zeek.git
synced 2025-10-02 14:48:21 +00:00
16 lines
408 B
Standard ML
16 lines
408 B
Standard ML
signature resp-client {
|
|
ip-proto == tcp
|
|
payload /^.*\r\n/
|
|
tcp-state originator
|
|
requires-reverse-signature resp-serialized-server
|
|
event "Found possible Redis client data"
|
|
enable "spicy_Redis"
|
|
}
|
|
|
|
signature resp-serialized-server {
|
|
ip-proto == tcp
|
|
payload /^([-+_,].*\r\n|[:$*#(!=%`~>][+-]?[0-9]+(\.[0-9]*)?\r\n)/
|
|
tcp-state responder
|
|
event "Found Redis server data"
|
|
enable "spicy_Redis"
|
|
}
|