14 Commits (39f5c7f56ab7c70616304ad55be4a118edee2530)

Author	SHA1	Message	Date
Vadym Malakhatko	126597144c	eve: add Hassh fields to SSH JSON logger and add ssh log condition	5 years ago
Philippe Antoine	69b4fffdae	parse: move SSH parser from C to Rust	5 years ago
Victor Julien	1bed6e9cae	ssh: implement DetectFlags API	8 years ago
Victor Julien	a0fad6bb7f	mpm: run engines as few times as possible ... In various scenarios buffers would be checked my MPM more than once. This was because the buffers would be inspected for a certain progress value or higher. For example, for each packet in a file upload, the engine would not just rerun the 'http client body' MPM on the new data, it would also rerun the method, uri, headers, cookie, etc MPMs. This was obviously inefficent, so this patch changes the logic. The patch only runs the MPM engines when the progress is exactly the intended progress. If the progress is beyond the desired value, it is run once. A tracker is added to the app layer API, where the completed MPMs are tracked. Implemented for HTTP, TLS and SSH.	8 years ago
Victor Julien	96b8100a51	lua: convert lua output to be tx aware	9 years ago
Victor Julien	3ee4989ba7	ssh: convert app-layer parser to be tx aware ... Like with SSL, there is only a single 'tx'.	9 years ago
Mats Klepsland	70cc1ddbcd	lua: SSH output support ... Support SSH in lua output scripts (Feature #1569).	10 years ago
Victor Julien	b877cf6158	ssh: add json logger ... Sub module of eve-log, but can also run separately as ssh-json-log. Only one at a time though.	12 years ago
Victor Julien	b792234dd0	ssh: clean up flags	12 years ago
Victor Julien	884cecd9af	ssh: handle fragmented banner ... Cleanups.	12 years ago
Victor Julien	32fcdfe6eb	ssh: server support, cleanups	12 years ago
Victor Julien	3648adb533	ssh: record parser	12 years ago
Victor Julien	fc248ca7a1	Many small performance updates.	15 years ago
Pablo Rincon	9d7baa7a9f	Adding ssh app layer module with two new keywords: ssh.protoversion and ssh.softwareversion	15 years ago