Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/scripts/base/protocols
History
Seth Hall a176e053ca Improve NTLM authentication logging. 
If only one side of a connection was seen, the ntlm.log
would indicate that the authentication failed.  This has been
modified so that the success is listed as null since it's not
known whether or not the authentication was successful.

It can be inferred from continued SMB analysis though because
activity will continue taking place.  I changed it though
because the log shouldn't assume more than what it sees.
2016-04-13 12:26:07 -04:00
..
conn Update documentation for RSTR. 2016-03-01 14:08:58 -08:00
dce-rpc Small improvements to DCE/RPC handling. 2016-04-13 12:10:51 -04:00
dhcp Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
dnp3 Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
dns Merge remote-tracking branch 'origin/topic/jsiwek/bit-1324' 2015-03-23 10:35:30 -07:00
ftp Files transferred over FTP were showing incorrect sizes. 2016-03-11 12:56:28 -05:00
http Merge branch 'patch-3' of https://github.com/aeppert/bro 2016-01-15 10:35:57 -08:00
irc File API updates complete. 2015-04-20 10:46:48 -04:00
krb Add missing documentation on the "Bro Package Index" page 2015-06-02 10:00:00 -05:00
modbus Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
mysql Add missing documentation on the "Bro Package Index" page 2015-06-02 10:00:00 -05:00
ntlm Improve NTLM authentication logging. 2016-04-13 12:26:07 -04:00
pop3 Add README files for base/protocols 2013-10-17 12:47:32 -05:00
radius Add missing documentation on the "Bro Package Index" page 2015-06-02 10:00:00 -05:00
rdp Add missing documentation on the "Bro Package Index" page 2015-06-02 10:00:00 -05:00
rfb Merge remote-tracking branch 'martin/topic/fox/rfb' 2016-04-12 17:00:06 -04:00
sip Subscribe is a valid message per RFC 3265 2016-03-01 14:00:11 -08:00
smb Move some of the last DCE_RPC scripts out of SMB scripts. 2016-04-03 15:48:47 -04:00
smtp SMTP logs include CC: addresses [BIT-1429] 2015-07-26 22:08:43 +03:00
snmp Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
socks Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
ssh Merge branch 'patch-4' of https://github.com/aeppert/bro 2016-03-07 13:39:28 -08:00
ssl Update TLS constants and extensions from IANA. 2016-03-18 11:23:44 -07:00
syslog Allow logging filters to inherit default path from stream. 2015-03-19 14:49:55 -05:00
tunnels Make Teredo DPD signature more precise. 2015-08-12 17:16:09 -07:00