zeek/scripts at c93b057a970bf1623c5a32901ea32f874aecb42f - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00

History

Aaron Eppert c93b057a97 (BIT-1545) Add "disable_analyzer_after_detection" en lieu of "skip_processing_after_detection" The default of "skip_processing_after_detection" is confusing and causes conn.log to not be written as one would assume, plus the counters are not incremented and thus some kinds of potential detections are short-changed. I propose adding "disable_analyzer_after_detection" which would react, on the surface, the same way by disabling the SSH analyzer, but allowing conn.log to be written appropriately.		2016-03-05 11:59:52 -05:00
..
base	(BIT-1545) Add "disable_analyzer_after_detection" en lieu of "skip_processing_after_detection"	2016-03-05 11:59:52 -05:00
broxygen	Fix Broxygen coverage.	2015-03-13 14:53:11 -05:00
policy	Update windows-version-detection.bro	2015-12-04 09:46:14 -05:00
site	Merge branch 'master' of https://github.com/aaronmbr/bro	2015-07-23 13:05:28 -07:00
CMakeLists.txt	Don't install test-all-policy.bro script as it's for testing only.	2011-10-12 12:42:12 -05:00
test-all-policy.bro	Allow for logging of the VLAN data about a connection in conn.log	2015-07-22 14:13:17 -04:00