Mirror/zeek
1
0
Fork 0
mirror of https://github.com/zeek/zeek.git synced 2025-10-16 05:28:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
No description
4690 commits 384 branches 198 tags 284 MiB
Find a file
Bernhard Amann ea1616bed5 At the moment, SSL connections where the ssl_established event does not fire are not logged. 
That means that, for example, connections that are terminated with an alert during the
handshake never appear in the ssl.log.

This patch changes this behavior - now all ssl connections that fire any event are logged.

The protocol confirmation of the ssl analyzer is moved to the client_hello instead to
the server hello. Furthermore, an additional field is added to ssl.log, which indicates
if a connection has been established or not (which probably indicates a handshake problem).
2014-03-04 14:23:49 -08:00
aux Updating submodule(s). 2014-03-02 13:57:10 -08:00
cmake@e7a46cb82e Updating submodule(s). 2013-11-15 07:06:00 -08:00
doc Merge remote-tracking branch 'origin/topic/jsiwek/dns-improvements' 2014-02-09 23:50:43 -05:00
magic@99c6b89230 Merge remote-tracking branch 'origin/topic/jsiwek/libmagic-integration' 2014-01-20 11:42:58 -08:00
pkg Adjusting Mac binary packaging script. 2012-09-13 16:47:40 -05:00
scripts At the moment, SSL connections where the ssl_established event does not fire are not logged. 2014-03-04 14:23:49 -08:00
src At the moment, SSL connections where the ssl_established event does not fire are not logged. 2014-03-04 14:23:49 -08:00
testing At the moment, SSL connections where the ssl_established event does not fire are not logged. 2014-03-04 14:23:49 -08:00
.gitignore Ignore tmp dir. 2011-10-25 19:59:25 -07:00
.gitmodules Change submodules to fixed URL. 2013-09-23 13:16:13 -05:00
bro-path-dev.in Flesh out Broxygen doc-gathering skeleton. 2013-10-22 14:45:47 -05:00
CHANGES Merge branch 'topic/robin/http-connect' 2014-03-03 16:53:46 -08:00
CMakeLists.txt Update to libmagic version 5.17, address BIT-1136. 2014-02-19 10:32:27 -06:00
config.h.in Merge remote-tracking branch 'origin/master' into topic/seth/elasticsearch 2012-07-06 12:01:16 -04:00
configure Merge remote-tracking branch 'origin/fastpath' 2013-10-29 09:28:13 -07:00
COPYING Updating copyright notice. 2013-10-07 17:06:38 -07:00
INSTALL Merge remote-tracking branch 'origin/topic/documentation' 2013-08-31 16:07:44 -07:00
Makefile Integrate new Broxygen functionality into Sphinx. 2013-11-21 14:34:32 -06:00
NEWS Updating CHANGES and VERSION. 2014-02-28 15:26:35 -08:00
README Updating README with download/git information. 2013-10-25 15:06:13 -07:00
VERSION Merge branch 'topic/robin/http-connect' 2014-03-03 16:53:46 -08:00

README 

============================
Bro Network Security Monitor
============================

Bro is a powerful framework for network analysis and security
monitoring. Please see the INSTALL file for installation instructions
and pointers for getting started. NEWS contains release notes for the
current version, and CHANGES has the complete history of changes.
Please see COPYING for licensing information.

You can download source and binary releases on:

    http://www.bro.org/download

To get the current development version, clone our master git
repository:

    git clone --recursive git://git.bro.org/bro

For more documentation, research publications, and community contact
information, please see Bro's home page:

    http://www.bro.org


On behalf of the Bro Development Team,

Vern Paxson & Robin Sommer,
International Computer Science Institute &
Lawrence Berkeley National Laboratory
vern@icir.org / robin@icir.org