suricata

Commit Graph

Author	SHA1	Message	Date
William Metcalf	dd86b51dbc	added optional option to specify signature file to load	16 years ago
Breno Silva	c90b4e6fcd	Decode event rule	16 years ago
Victor Julien	689bbfdc45	Rename all structure definitions in the "typedef struct _SomeStruct" format to "typedef struct SomeStruct_" to make the Doxygen output more useful. Remove the Trie multi pattern matcher code. It wasn't used anymore.	16 years ago
Victor Julien	ff4b5a5db7	Add support for flowbits.	16 years ago
Victor Julien	657be002d1	Big detection engine update: scan improvements, b2g/b3g updates, bloom fixes, iponly detection implementation, dsize/flow grouping.	16 years ago
Victor Julien	5df5b35e90	Put all globals in the detection engine ctx. Add HashList type, a hash that also stores the items ina list to it can be traversed. Many cleanups.	16 years ago
Victor Julien	efb10fc0d6	big update	16 years ago
Victor Julien	69e056e33f	Add the scanning to uricontent as well.	16 years ago
Victor Julien	fedcc397de	Detection engine improvement: don't run pattern matcher on packets with payload sizes less that the biggest content we need to match. Add some extra stats.	16 years ago
Victor Julien	dce2c12915	Add Scan before Search to the detection engine.	16 years ago
Victor Julien	c4f2fe4bd7	Implement per packet variables and switch the http stuff to it.	16 years ago
Victor Julien	3f7195454b	Big detection engine update.	16 years ago
Victor Julien	54ffe2053e	Large detection engine update.	16 years ago
Victor Julien	f3a94413db	Properly support 'alert ip' rules. Add support for handling ip only rules differently.	16 years ago
Victor Julien	dc48c58473	Switch to using a detection engine ctx.	16 years ago
Victor Julien	171c8c777d	Group signatures by protocol.	16 years ago
Victor Julien	eb1c4e4987	Large update to the detection engine. Greatly improve initialization speed and memory usage.	16 years ago
Victor Julien	b50fc8aecd	Speed up appending of sigs to a sig group head by using a tail ptr.	16 years ago
Victor Julien	eaaeb30cd6	Add noalert keyword for use with sigs that are used for capturing only.	16 years ago
Victor Julien	f0ed41fb0a	Support priority keyword, add priority to alert-fastlog.	16 years ago
Victor Julien	dc224cb2d2	Large update containing the first step to making the detection engine use rule groups. Address based rule groups are now implemented.	16 years ago
William Metcalf	559edc01e3	NFQUE drop support added with ident of 4 :-(	16 years ago
Victor Julien	b8ad4adf81	complete rename of address2 to address	16 years ago
Victor Julien	7aada782a4	WIP address matching stuff	16 years ago
Victor Julien	bab4b62376	Initial add of the files.	16 years ago

25 Commits (630a58b719a518215e23ca685ce0ce3acb071dbd)