zeek/scripts/policy/frameworks/intel at a9ad41cdccdfecffc4dda453da3223d203f48658 - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00

History

Jan Grashoefer a9ad41cdcc Improved intel notices. Intel notices are identified by a direction independent 3-tuple (indicator, originator IP, responder IP). This allows notice suppression. Additionally service and intel source are added to the notice mail.		2016-05-29 00:57:29 +02:00
..
seen	Intel: Allow to provide uid/fuid instead of conn/f.	2016-04-25 16:54:47 -07:00
do_notice.bro	Improved intel notices.	2016-05-29 00:57:29 +02:00
whitelist.bro	Added hook to allow extending the intel log.	2016-05-11 23:59:46 +02:00