zeek/scripts/base/frameworks/intel at cafae5351bbfea8f767bf82fbb97b5317abd74df - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00

History

Jan Grashoefer cafae5351b Added support for subnets to intel-framework. The intel-framework now supports the new indicator type Intel::SUBNET. As subnets are matched against seen addresses, the field matched was introduced to indicate which indicator types caused the hit. A testcase for subents was added and the old ones have been updated accordingly.		2016-03-22 19:16:51 +01:00
..
__load__.bro	Only the manager tries to read files with the input framework now.	2012-10-10 13:00:48 -04:00
cluster.bro	Fix typos and formatting in the intel framework docs	2013-10-10 15:23:19 -05:00
input.bro	Fix typos and formatting in the intel framework docs	2013-10-10 15:23:19 -05:00
main.bro	Added support for subnets to intel-framework.	2016-03-22 19:16:51 +01:00
README	Add README files for most Bro frameworks	2013-10-11 00:19:37 -05:00

README

The intelligence framework provides a way to store and query intelligence
data (such as IP addresses or strings). Metadata can also be associated
with the intelligence.