Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-04 23:58:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/scripts/base/frameworks/files
History
Alexander Bolshakov 1759205930
Add Windows Minidump file signature 
This signature is relevant for process dumps on Windows that could be extracted by various tools. The unencrypted transmission of the dump of a critical system process (for example, lsass.exe) via network would be detected by this rule.
2019-06-28 14:43:38 +03:00
..
magic Add Windows Minidump file signature 2019-06-28 14:43:38 +03:00
__load__.zeek Rename all scripts to have ".zeek" file extension 2019-04-11 21:12:40 -05:00
main.zeek GH-234: rename Broxygen to Zeexygen along with roles/directives 2019-04-22 19:45:50 -07:00
README Add README files for most Bro frameworks 2013-10-11 00:19:37 -05:00

README 

The file analysis framework provides an interface for driving the analysis
of files, possibly independent of any network protocol over which they're
transported.