zeek/scripts/base/files/x509 at e1bcc4509f9393dc16151a744ac26f6db7407511 - Mirror/zeek

mirror of https://github.com/zeek/zeek.git synced 2025-10-02 14:48:21 +00:00

History

Johanna Amann e1bcc4509f OCSP: rewrite events and data structures. Instead of having a big event, that tries to parse all the data into a huge datastructure, we do the more common thing and use a series of smaller events to parse requests and responses. The new events are: ocsp_request -> raised for an ocsp request, giving version and requestor ocsp_request_certificate -> raised n times per request, once per cert ocsp_response_status -> raised for each ocsp response, giving status ocsp_response_bytes -> raised for each ocsp response with information ocsp_response_certificate -> raised for each cert in an ocsp response		2017-02-10 17:03:18 -08:00
..
__load__.bro	OCSP: rewrite events and data structures.	2017-02-10 17:03:18 -08:00
main.bro	Add some missing Bro script documentation	2016-05-05 16:35:31 -05:00
ocsp.bro	OCSP: a bunch of whitespace fixes	2017-02-10 17:03:04 -08:00
README	Make OCSP analyzer part of the X.509 analyzer	2017-02-10 17:02:15 -08:00

Support for X509 certificates with the file analysis framework.
Also supposrts OCSP requests and responses.