zeek/scripts/base at de9f03b0bffae6cc89d5a4430bba8db7550e881f - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-06 16:48:19 +00:00

History

Robin Sommer de9f03b0bf New script misc/dump-events.bro, along with core support, that dumps events Bro is raising in an easily readable form. This is for debugging purposes, obviously. Example, including only SMTP events: > bro -r smtp.trace misc/dump-events.bro DumpEvents::include=/smtp/ [...] 1254722768.219663 smtp_reply [0] c: connection = [id=[orig_h=10.10.1.4, orig_p=1470/tcp, resp_h=74.53.140.153, [...] [1] is_orig: bool = F [2] code: count = 220 [3] cmd: string = > [4] msg: string = xc90.websitewelcome.com ESMTP Exim 4.69 #1 Mon, 05 Oct 2009 01:05:54 -0500 [5] cont_resp: bool = T 1254722768.219663 smtp_reply [0] c: connection = [id=[orig_h=10.10.1.4, orig_p=1470/tcp, resp_h=74.53.140.153, [...] [1] is_orig: bool = F [2] code: count = 220 [3] cmd: string = > [4] msg: string = We do not authorize the use of this system to transport unsolicited, [5] cont_resp: bool = T [...]		2013-11-22 14:20:00 -08:00
..
files	Add more script package README files	2013-10-23 16:36:14 -05:00
frameworks	Fixing warnings during doc build.	2013-11-07 00:46:48 -08:00
misc	Add UDP support to the checksum offload detection script.	2013-10-24 15:21:03 -04:00
protocols	Remove resp_size from the log. Refactor when we write out to the log a bit. Geodata now works reliably.	2013-11-05 11:58:00 -05:00
utils	Return the Dir module to file name tracking instead of inode tracking.	2013-10-29 11:09:55 -04:00
init-bare.bro	New script misc/dump-events.bro, along with core support, that dumps events Bro is raising	2013-11-22 14:20:00 -08:00
init-default.bro	Fix typos and formatting in init-bare.bro and init-default.bro	2013-10-20 01:32:17 -05:00