zeek/scripts/base/frameworks/analyzer at 17d0ade26a18f42842bfb68d0a3234dd5fb9ef70 - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00

History

Arne Welzel 17d0ade26a analyzer: Add analyzer.log for logging violations/confirmations By default this only logs all the violations, regardless of the confirmation state (for which there's still dpd.log). It includes packet, protocol and file analyzers. This uses options, change handlers and event groups for toggling the functionality at runtime. Closes #2031		2023-01-09 18:11:49 +01:00
..
__load__.zeek	analyzer: Add analyzer.log for logging violations/confirmations	2023-01-09 18:11:49 +01:00
dpd.zeek	Introduce generic analyzer_confirmation_info and analyzer_violation_info	2022-09-27 17:49:51 +02:00
logging.zeek	analyzer: Add analyzer.log for logging violations/confirmations	2023-01-09 18:11:49 +01:00
main.zeek	analyzer/files: handle non-analyzer names in describe_file()	2022-12-06 11:17:30 +01:00
README	More bro-to-zeek renaming in scripts and other files	2019-05-16 02:36:41 -05:00

README

The analyzer framework allows to dynamically enable or disable Zeek's
protocol analyzers, as well as to manage the well-known ports which
automatically activate a particular analyzer for new connections.