suricata

Commit Graph

Author	SHA1	Message	Date
Victor Julien	fca541f40e	Add per app layer parser profiling Per packet per app layer parser profiling. Example summary output: Per App layer parser stats: App Layer IP ver Proto cnt min max avg -------------------- ------ ----- ------ ------ ---------- ------- ALPROTO_HTTP IPv4 6 163394 126 38560320 42814 ALPROTO_FTP IPv4 6 644 117 26100 2566 ALPROTO_TLS IPv4 6 670 117 7137 799 ALPROTO_SMB IPv4 6 114794 126 225270 957 ALPROTO_DCERPC IPv4 6 5207 126 25596 1266 Also added to the csv out. In the csv out there is a new column "stream (no app)" that removes the app layer parsers from the stream tracking. So raw stream engine performance becomes visible.	14 years ago
Victor Julien	0cc9f39200	Move TlsConfig structure out of app-layer-protos.h and rename it to SslConfig.	14 years ago
Gurvinder Singh	8f8b1212af	support for ssl_version keyword	15 years ago
Kirby Kuehl	c3b9305259	dcerpc udp support	15 years ago
William Metcalf	ce01927515	Import of GPLv2 Header 050410	15 years ago
Kirby Kuehl	57331ea2a2	add smb2 proto and smb, smb2, dcerpc unit tests	16 years ago
Gurvinder Singh	c1e485cc44	app layer error handling	16 years ago
Gurvinder Singh	a16e7b7455	tls no reassembly support	16 years ago
Kirby Kuehl	ecaa701bdf	smb and dcerpc work	16 years ago
Victor Julien	086ba5f49b	Add 'BySize' field parser. Add stub tls parser.	16 years ago
Victor Julien	4369816cdd	Improvements to content keyword memory handling. First version of a simple pattern based L7 proto detection engine. Currently just works by matching a single pattern in the initial data. Implemented HTTP, SSL, MSN, JABBER, SMTP and a few more. Couple of pattern matcher cleanups.	16 years ago
Victor Julien	8e10844f95	Initial code of Application Layer parsing framework. Rename of L7* to AppLayer*.	16 years ago

12 Commits (c3ba9926522ddd33ab43f24710d027cd3f9e035d)