Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
zeek/testing/btest/scripts/base/protocols
History
Arne Welzel 1b3e8a611e ftp/main: Skip get_pending_command() for intermediate reply lines 
Intermediate lines of multiline replies usually do not contain valid status
codes (even if servers may opt to include them). Their content may be anything
and likely unrelated to the original command. There's little reason for us
trying to match them with a corresponding command.

OSS-Fuzz generated a large command reply with very many intermediate lines
which caused long processing times due to matching every line with all
currently pending commands.
This is a DoS vector against Zeek. The new ipv6-multiline-reply.trace and
ipv6-retr-samba.trace files have been extracted from the external ipv6.trace.
2023-03-23 13:50:36 +01:00
..
arp Initial implementation of Lower-Level analyzers 2020-09-23 11:13:25 -07:00
bittorrent Adding test for BitTorrent tracker. 2021-12-21 17:48:26 +01:00
conn GH-1252: rename files with colons for Windows compatibility 2020-11-04 10:29:52 -08:00
dce-rpc Fix protocol forwarding in dce_rpc-auth 2021-09-23 08:50:11 -04:00
dhcp Prevent large dhcp log entries 2022-07-28 11:34:18 -07:00
dnp3 General btest cleanup 2020-08-11 11:26:22 -07:00
dns dns: Remove AD and CD flags from log 2023-03-16 10:09:27 +01:00
finger Provide infrastructure to migrate legacy analyzers to Spicy. 2023-02-01 11:33:48 +01:00
ftp ftp/main: Skip get_pending_command() for intermediate reply lines 2023-03-23 13:50:36 +01:00
http Merge remote-tracking branch 'origin/topic/awelzel/http-content-range-parsing-robustness' 2023-03-13 18:41:16 +01:00
icmp Remove deprecated ICMP events 2021-01-27 10:52:40 -07:00
imap Remove @load base/frameworks/dpd from tests 2022-08-31 17:00:55 +02:00
irc Remove @load base/frameworks/dpd from tests 2022-08-31 17:00:55 +02:00
krb krb/smb2_krb_nokeytab: Register get_file_handle() to avoid warnings 2023-02-06 18:09:11 +01:00
modbus Spelling testing 2022-11-16 20:05:03 -05:00
mount GH-239: Rename bro to zeek, bro-config to zeek-config, and bro-path-dev to zeek-path-dev. 2019-05-01 21:43:45 +00:00
mqtt GH-474: change MQTT::max_payload_size to be a runtime option 2019-08-05 18:11:54 -07:00
mysql mysql: Recognize when client/server negotiate SSL 2023-01-27 12:42:19 +01:00
ncp General btest cleanup 2020-08-11 11:26:22 -07:00
nfs GH-239: Rename bro to zeek, bro-config to zeek-config, and bro-path-dev to zeek-path-dev. 2019-05-01 21:43:45 +00:00
ntp General btest cleanup 2020-08-11 11:26:22 -07:00
pop3 Remove @load base/frameworks/dpd from tests 2022-08-31 17:00:55 +02:00
portmap GH-684: Fix parsing of RPC calls with non-AUTH_UNIX flavors 2019-11-13 13:14:14 -08:00
radius Convert pcapng test suite files to pcap format 2019-11-08 13:08:06 -08:00
rdp Add test for new handling of unknown RDP keyboards 2023-01-23 13:01:48 -07:00
rfb regularize test suite names to avoid custom/outdated suffices 2022-05-12 13:32:49 -07:00
sip GH-1507: Tolerate junk data before SIP requests 2021-04-14 15:34:07 -07:00
smb Merge remote-tracking branch 'security/topic/timw/131-smb-fscontrol-overflow' 2023-02-01 10:48:16 -07:00
smtp GH-1352: Added flag to stop processing SMTP headers in attached 2021-01-21 14:55:10 -05:00
snmp General btest cleanup 2020-08-11 11:26:22 -07:00
socks General btest cleanup 2020-08-11 11:26:22 -07:00
ssh Added several events for detailed info on the SSH2 key init directions 2022-12-05 12:35:05 +01:00
ssl Merge remote-tracking branch 'origin/topic/johanna/fix-scripts.base.protocols.ssl.x509-invalid-extension-on-openssl-3.1' 2023-03-15 14:11:10 +01:00
syslog General btest cleanup 2020-08-11 11:26:22 -07:00
tcp Add testcase for TCP segment offloading. 2021-11-23 12:37:55 +00:00
xmpp Remove @load base/frameworks/dpd from tests 2022-08-31 17:00:55 +02:00