Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-13 20:18:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 3
zeek/src/analyzer/protocol/rdp/RDP.h
Anthony Kasza 60644bc85f Add RDP over UDP analyzer
2020-04-02 17:53:47 -07:00

32 lines
759 B
C++
Raw Blame History

#pragma once
#include "events.bif.h"
#include "analyzer/protocol/tcp/TCP.h"
#include "analyzer/protocol/pia/PIA.h"
#include "rdp_pac.h"
namespace analyzer { namespace rdp {
class RDP_Analyzer : public tcp::TCP_ApplicationAnalyzer {
public:
explicit RDP_Analyzer(Connection* conn);
~RDP_Analyzer() override;
// Overriden from Analyzer.
void Done() override;
void DeliverStream(int len, const u_char* data, bool orig) override;
void Undelivered(uint64_t seq, int len, bool orig) override;
void EndpointEOF(bool is_orig) override;
static analyzer::Analyzer* InstantiateAnalyzer(Connection* conn)
{ return new RDP_Analyzer(conn); }
protected:
binpac::RDP::RDP_Conn* interp;
bool had_gap;
pia::PIA_TCP *pia;
};
} } // namespace analyzer::*
Reference in a new issue View git blame Copy permalink