mirror of
https://github.com/zeek/zeek.git
synced 2025-10-04 07:38:19 +00:00
bbedb73a45
- More data pulled into scriptland.
- Logs expanded with client screen resolution and desired color depth.
- Values in UTF-16 on the wire are converted to UTF-8 before being
sent to scriptland.
- If the RDP turns into SSL records, we now pass data that appears
to be SSL to the PIA analyzer.
- If RDP uses native encryption with X.509 certs we pass those
certs to the files framework and the base scripts pass them forward
to the X.509 analyzer.
- Lots of cleanup and adjustment to fit the documented protocol
a bit better.
- Cleaned up the DPD signatures.
- Moved to flowunit instead of datagram.
- Added tests.
|
||
|---|---|---|
| .. | ||
| conn | ||
| dhcp | ||
| dnp3 | ||
| dns | ||
| ftp | ||
| http | ||
| irc | ||
| modbus | ||
| mysql | ||
| pop3 | ||
| radius | ||
| rdp | ||
| smtp | ||
| snmp | ||
| socks | ||
| ssl | ||
| syslog | ||