Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 06:38:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
zeek/testing/btest/scripts/base/protocols
History
Arne Welzel ae90524027 QUIC: Handle CRYPTO frames across multiple INITIAL packets 
Instead of sending the accumulated CRYPTO frames after processing an
INITIAL packet, add logic to determine the total length of the TLS
Client or Server Hello (by peeking into the first 4 byte). Once all
CRYPTO frames have arrived, flush the reassembled data to the TLS
analyzer at once.
2025-05-05 14:34:11 +02:00
..
arp Initial implementation of Lower-Level analyzers 2020-09-23 11:13:25 -07:00
bittorrent testing/btest/*zeek: Comment all @TEST lines 2025-04-17 16:30:23 +02:00
conn GH-1252: rename files with colons for Windows compatibility 2020-11-04 10:29:52 -08:00
dce-rpc dce-rpc: Test cases for unbounded state growth 2023-06-30 15:14:35 +02:00
dhcp testing/btest/*zeek: Comment all @TEST lines 2025-04-17 16:30:23 +02:00
dnp3 General btest cleanup 2020-08-11 11:26:22 -07:00
dns Raise warnings when for DNS events that are not raised due to dns_skip_all_addl 2025-01-07 17:46:27 +00:00
finger Provide infrastructure to migrate legacy analyzers to Spicy. 2023-02-01 11:33:48 +01:00
ftp Allow to track service violations in conn.log. 2025-01-30 16:59:44 +00:00
http Ignore case when matching prefix in http analyzer 2025-04-25 10:33:11 -07:00
icmp Remove deprecated ICMP events 2021-01-27 10:52:40 -07:00
imap Remove @load base/frameworks/dpd from tests 2022-08-31 17:00:55 +02:00
irc Add irc_dcc_send_ack event and fix missing fields 2023-04-24 07:29:51 +00:00
krb Make enc_part value from kerberos response available to scripts 2025-01-31 12:58:14 +00:00
ldap ldap: Only switch into MS_KRB5 mode if responseToken exists 2025-04-15 20:10:52 +02:00
modbus Explain why modbus test does not work with the Spicy SSL analyzer 2024-11-27 14:51:26 +00:00
mount GH-239: Rename bro to zeek, bro-config to zeek-config, and bro-path-dev to zeek-path-dev. 2019-05-01 21:43:45 +00:00
mqtt Remove full scripts marked as 6.1 deprecations 2023-06-14 10:07:22 -07:00
mysql mysql: Implement and test COM_CHANGE_USER 2024-08-14 10:20:01 +02:00
ncp General btest cleanup 2020-08-11 11:26:22 -07:00
nfs GH-239: Rename bro to zeek, bro-config to zeek-config, and bro-path-dev to zeek-path-dev. 2019-05-01 21:43:45 +00:00
ntp NTP: Detect out-of-order packets 2023-05-04 19:44:02 +02:00
pop3 POP3: Rework unbounded pending command fix 2024-10-04 12:45:59 -07:00
portmap GH-684: Fix parsing of RPC calls with non-AUTH_UNIX flavors 2019-11-13 13:14:14 -08:00
postgresql postgresql: Initial parser implementation 2024-09-06 16:10:48 +02:00
quic QUIC: Handle CRYPTO frames across multiple INITIAL packets 2025-05-05 14:34:11 +02:00
radius Convert pcapng test suite files to pcap format 2019-11-08 13:08:06 -08:00
rdp RDP: cookie is optional 2025-03-04 13:38:01 +00:00
rfb regularize test suite names to avoid custom/outdated suffices 2022-05-12 13:32:49 -07:00
sip GH-1507: Tolerate junk data before SIP requests 2021-04-14 15:34:07 -07:00
smb Fix handling of zero-length SMB2 error responses 2024-07-24 12:44:46 -07:00
smtp btest/smtp/bdat: Move tests into proper directory 2024-01-23 21:49:50 +01:00
snap Make SNAP analyzer use both OUI and protocol for forwarding 2025-03-24 15:20:50 -07:00
snmp General btest cleanup 2020-08-11 11:26:22 -07:00
socks testing/btest/*zeek: Comment all @TEST lines 2025-04-17 16:30:23 +02:00
ssh SSH: make banner parsing more robust 2025-03-18 16:19:33 +00:00
ssl testing/btest: Use OPENSSL_ENABLE_SHA1_SIGNATURES 2025-02-04 09:43:26 +01:00
syslog General btest cleanup 2020-08-11 11:26:22 -07:00
tcp Add testcase for TCP segment offloading. 2021-11-23 12:37:55 +00:00
websocket websocket: Add Spicy parser version, too. 2024-02-06 17:29:55 +01:00
xmpp Remove @load base/frameworks/dpd from tests 2022-08-31 17:00:55 +02:00