suricata

Commit Graph

Author	SHA1	Message	Date
Victor Julien	b31ffde6f4	output: remove error codes from output	3 years ago
Philippe Antoine	83a8cd80b2	detect: remove wrappers around DetectEngineInspectGenericList	3 years ago
Philippe Antoine	b8524e70d9	detect: change InspectEngineFuncPtr2 to return uint8_t	3 years ago
Philippe Antoine	3de99a214c	pcre2: migrate keywords parsing	4 years ago
Victor Julien	84385549fe	detect: remove unused arg from generic list inspect	5 years ago
Victor Julien	5062023ffe	detect/ftp: convert to v2 inspect API	5 years ago
Victor Julien	6ab323d323	detect: hide RegisterTests behind ifdef UNITTESTS Update all callers to more aggressively use UNITTESTS guards as well.	5 years ago
Victor Julien	26bcc97515	detect/keywords: dynamic version part of doc URL	5 years ago
Jeff Lucovsky	d3a65fe156	detect: Provide `de_ctx` to free functions This commit makes sure that the `DetectEngineCtx *` is available to each detector's "free" function.	5 years ago
Jeff Lucovsky	7f6af10fed	general: copyright bump	5 years ago
Jeff Lucovsky	4b0085b03c	detect: Update to take advantage of PCRE refactor This commit changes the keyword detectors to use the refactored PCRE modifications from detect-parse.[ch]	5 years ago
Victor Julien	14896365ef	detect: remove Threadvars argument from API calls Remove it as it's (almost) never used. If it is really needed it can be accessed through DetectEngineThreadCtx::tv as well.	6 years ago
Victor Julien	884ca0cd3a	detect/ftp: small ftpdata_command cleanups	6 years ago
Eric Leblond	8c1b16e22d	doc: fix some links in list-keywords command	7 years ago
Victor Julien	5879dafe55	detect: cleanup direct SIG_FLAG_STATE_MATCH use This flag should normally not be set manually. It will be set by the code registering the app engines in a signature.	7 years ago
Eric Leblond	cbce2c78bd	detect-ftpdata: match on ftp-data operation This keyword mathes on ftp operation STOR and RETR. It will allow rules writer to select if the alert has to be on a put or a fetch operation. It is now possible to write a signature like: alert ftp-data any any -> any any (msg:"FTP data get firwmare"; ftdata_command:retr; sid:2; rev:1;) to alert when a file is retrieved from a FTP server.	8 years ago

16 Commits (b31ffde6f4f9069eaa7f366d3d9a3ab68e97209e)