Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
zeek/scripts/base/protocols/ssl
History
Arne Welzel bc8fd5a4c6 Introduce generic analyzer_confirmation_info and analyzer_violation_info 
Introduce two new events for analyzer confirmation and analyzer violation
reporting. The current analyzer_confirmation and analyzer_violation
events assume connection objects and analyzer ids are available which
is not always the case. We're already passing aid=0 for packet analyzers
and there's not currently a way to report violations from file analyzers
using analyzer_violation, for example.

These new events use an extensible Info record approach so that additional
(optional) information can be added later without changing the signature.
It would allow for per analyzer extensions to the info records to pass
analyzer specific info to script land. It's not clear that this would be
a good idea, however.

The previous analyzer_confirmation and analyzer_violation events
continue to exist, but are deprecated and will be removed with Zeek 6.1.
2022-09-27 17:49:51 +02:00
..
__load__.zeek Rename all scripts to have ".zeek" file extension 2019-04-11 21:12:40 -05:00
consts.zeek Update SSL consts 2021-01-20 14:14:47 +00:00
ct-list.zeek Update X.509 and CT trust anchors 2022-04-28 13:58:29 +01:00
dpd.sig Match DPD TLS signature on one-sided connections. 2022-02-01 16:51:21 +00:00
files.zeek SSL Analyzer: track connection direction by messages 2022-06-24 18:35:44 +01:00
main.zeek Introduce generic analyzer_confirmation_info and analyzer_violation_info 2022-09-27 17:49:51 +02:00
mozilla-ca-list.zeek Update X.509 and CT trust anchors 2022-04-28 13:58:29 +01:00
README SSL: Update OCSP/SCT scripts and documentation. 2017-07-27 16:22:40 -07:00

README 

Support for Secure Sockets Layer (SSL)/Transport Layer Security(TLS) protocol analysis.