aboutsummaryrefslogtreecommitdiff
path: root/bro-script
Commit message (Collapse)AuthorAge
* bro-script: Explain log file source in READMERobin Krahl2017-09-25
|
* bro-script: Add more advanced implementationRobin Krahl2017-09-25
| | | | | | | Add a more advanced Bro script implementation that outputs the address and the register value, one line per address. This approach also suffers from the connection assumption described for pasad-simple and contains no sanity checks at all.
* bro-script: pasad-simple: Change log name to pasad-simpleRobin Krahl2017-09-25
|
* bro-script: pasad-simple: Fix typoRobin Krahl2017-09-25
| | | | Write ‘address’ instead of ‘adress’.
* bro-script: Add simple baseline implementationRobin Krahl2017-09-25
| | | | | | | | | | | | | | This implementation only logs the (combined) request and response events that occur within the same connection. This assumes that a response is always send over the same connection as a request. It is unclear whether this assumption really holds. This implementation does not yet contain error handling, so if there was no response for a request, Bro displays an error message. It also does not contain an interpretation of the values, so if multiple values are read within one request, they are displayed in the same log entry.
* Add directory for bro-scriptRobin Krahl2017-09-25
Add a (nearly) empty directory for the baseline implementation of the payload extraction as a Bro script executed directly within Bro.