| .. |
|
Makefile.am
|
Steve Grub fixes... Thanx Steve!
|
16 years ago |
|
action-globals.h
|
Fix weird compile error
|
16 years ago |
|
alert-debuglog.c
|
Unified output fixes: alert count per module (not per thread), fix timestamps on pcap mode, write *all* the alerts of a packet, write the log header once also on unified alert
|
16 years ago |
|
alert-debuglog.h
|
Consistency fix.. Xxxlog -> XxxLog.
|
16 years ago |
|
alert-fastlog.c
|
mpm b2g cuda support added
|
16 years ago |
|
alert-fastlog.h
|
Consistency fix.. Xxxlog -> XxxLog.
|
16 years ago |
|
alert-prelude.c
|
Add Prelude output plugin
|
16 years ago |
|
alert-prelude.h
|
Add Prelude output plugin
|
16 years ago |
|
alert-unified-alert.c
|
afaik integer increments are not atomic, so put inside the lock
|
16 years ago |
|
alert-unified-alert.h
|
Use the configuration file to setup alert logging (and http logging).
|
16 years ago |
|
alert-unified-log.c
|
afaik integer increments are not atomic, so put inside the lock
|
16 years ago |
|
alert-unified-log.h
|
Use the configuration file to setup alert logging (and http logging).
|
16 years ago |
|
alert-unified2-alert.c
|
afaik integer increments are not atomic, so put inside the lock
|
16 years ago |
|
alert-unified2-alert.h
|
Use the configuration file to setup alert logging (and http logging).
|
16 years ago |
|
app-layer-dcerpc-common.h
|
bug 88 validate dcerpc header
|
16 years ago |
|
app-layer-dcerpc.c
|
fix bug88
|
16 years ago |
|
app-layer-dcerpc.h
|
refactor dcerpc in prep for dcerpc over smb
|
16 years ago |
|
app-layer-detect-proto.c
|
handle the cuda cleanup at shutdown. should get rid of any errors from the call to SigGroupCleanup
|
16 years ago |
|
app-layer-detect-proto.h
|
Remove unused conditional locking code from the app layer parsing code.
|
16 years ago |
|
app-layer-ftp.c
|
Stream engine memory handling update
|
16 years ago |
|
app-layer-ftp.h
|
Adding FTP app layer parser and ftpbounce detection at L7
|
16 years ago |
|
app-layer-htp.c
|
app layer htp logging and better htp request handling. removed recent_in_tx.
|
16 years ago |
|
app-layer-htp.h
|
app layer htp logging and better htp request handling. removed recent_in_tx.
|
16 years ago |
|
app-layer-nbss.h
|
signed unsigned comparision fix for 64 bit
|
16 years ago |
|
app-layer-parser.c
|
Renaming errors with naming conventions
|
16 years ago |
|
app-layer-parser.h
|
Remove unused conditional locking code from the app layer parsing code.
|
16 years ago |
|
app-layer-protos.h
|
add smb2 proto and smb, smb2, dcerpc unit tests
|
16 years ago |
|
app-layer-smb.c
|
fix bug88
|
16 years ago |
|
app-layer-smb.h
|
signed unsigned comparision fix for 64 bit
|
16 years ago |
|
app-layer-smb2.c
|
Stream engine memory handling update
|
16 years ago |
|
app-layer-smb2.h
|
style patch
|
16 years ago |
|
app-layer-tls.c
|
Renaming errors with naming conventions
|
16 years ago |
|
app-layer-tls.h
|
TLS: small updates to the tls parser
|
16 years ago |
|
app-layer.c
|
Application layer detection improvements
|
16 years ago |
|
app-layer.h
|
Application layer detection improvements
|
16 years ago |
|
conf-yaml-loader.c
|
Fix bug 99.
|
16 years ago |
|
conf-yaml-loader.h
|
Require that the configuration file begins with a valid YAML version. At this time this means the configuration file must begin with
|
16 years ago |
|
conf.c
|
Fix bug 99.
|
16 years ago |
|
conf.h
|
Cleanup of configuration internals. Use an n-ary type tree for everything instead of a first level hash branching off into n-ary type trees.
|
16 years ago |
|
counters.c
|
Renaming errors with naming conventions
|
16 years ago |
|
counters.h
|
Changing mutex/spinlocks/conditions naming types
|
16 years ago |
|
debug.h
|
More logging API usage changes.
|
16 years ago |
|
decode-ethernet.c
|
VLAN Support
|
16 years ago |
|
decode-ethernet.h
|
more unit tests for pppoe - part I
|
16 years ago |
|
decode-events.h
|
VLAN Support
|
16 years ago |
|
decode-gre.c
|
VLAN Support
|
16 years ago |
|
decode-gre.h
|
GRE struct naming fix, comment adds.
|
16 years ago |
|
decode-icmpv4.c
|
Add icmp flow handling.
|
16 years ago |
|
decode-icmpv4.h
|
ICMP Seq Rule Keyword
|
16 years ago |
|
decode-icmpv6.c
|
ICMP Seq Rule Keyword
|
16 years ago |
|
decode-icmpv6.h
|
ICMP Seq Rule Keyword
|
16 years ago |
|
decode-ipv4.c
|
Issue 82 - fragment counters. - number of fragments - number reassembled - number of timeouts
|
16 years ago |
|
decode-ipv4.h
|
looking inside ICMP packets
|
16 years ago |
|
decode-ipv6.c
|
Issue 82 - fragment counters. - number of fragments - number reassembled - number of timeouts
|
16 years ago |
|
decode-ipv6.h
|
Reorganize header inclusions.
|
16 years ago |
|
decode-ppp.c
|
Rename to Suricata.
|
16 years ago |
|
decode-ppp.h
|
Fix short IPv4 packets not getting detected in the decoder. Set decode event on short ipv6 packets.
|
16 years ago |
|
decode-pppoe.c
|
PPPoE fixes.
|
16 years ago |
|
decode-pppoe.h
|
PPPoE fixes.
|
16 years ago |
|
decode-raw.c
|
Fixup unittest error output for RAW decoder.
|
16 years ago |
|
decode-raw.h
|
raw pcap support additionl ipv4/6 validation
|
16 years ago |
|
decode-sll.c
|
VLAN Support
|
16 years ago |
|
decode-sll.h
|
64 bit cleanup part2
|
16 years ago |
|
decode-tcp.c
|
Rename to Suricata.
|
16 years ago |
|
decode-tcp.h
|
target based paws handling
|
16 years ago |
|
decode-udp.c
|
Rename to Suricata.
|
16 years ago |
|
decode-udp.h
|
Added support for the csum-<protocol> rules keyword to the detection engine. Keywords added are ipv4-csum, tcpv4-csum, tcpv6-csum, udpv4-csum, udpv6-csum, icmpv4-csum and icmpv6-csum
|
16 years ago |
|
decode-vlan.c
|
VLAN Support
|
16 years ago |
|
decode-vlan.h
|
VLAN Support
|
16 years ago |
|
decode.c
|
VLAN Support
|
16 years ago |
|
decode.h
|
Changed the way cuda dispatcher passes back results. Now each detection thread has it's own queue to which the dispatcher can pump packets back to the detect thread. Also, with cuda enabled and a non-cuda mpm being used, we won't create a dispatcher and instead call the b2g scan/search funtions directly instead of using the dispatcher.
|
16 years ago |
|
defrag.c
|
Split the defrag counters into ipv4 and ipv6.
|
16 years ago |
|
defrag.h
|
Issue 82 - fragment counters. - number of fragments - number reassembled - number of timeouts
|
16 years ago |
|
detect-ack.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-ack.h
|
Ack/Seq Keywords part 2
|
16 years ago |
|
detect-bytejump.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-bytejump.h
|
Cleanup bytetest and bytejump.
|
16 years ago |
|
detect-bytetest.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-bytetest.h
|
Cleanup bytetest and bytejump.
|
16 years ago |
|
detect-classtype.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-classtype.h
|
Support for Classtype keyword and Classification Config file
|
16 years ago |
|
detect-content.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-content.h
|
Fixup code to compile with -Wall -Werror -Wextra -Wno-unused-parameter compiler options.
|
16 years ago |
|
detect-csum.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-csum.h
|
Added support for the csum-<protocol> rules keyword to the detection engine. Keywords added are ipv4-csum, tcpv4-csum, tcpv6-csum, udpv4-csum, udpv6-csum, icmpv4-csum and icmpv6-csum
|
16 years ago |
|
detect-dce-iface.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-dce-iface.h
|
fix padding calculation and stubdata parser for dcerpc
|
16 years ago |
|
detect-dce-opnum.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-dce-opnum.h
|
fix padding calculation and stubdata parser for dcerpc
|
16 years ago |
|
detect-dce-stub-data.c
|
Stream engine memory handling update
|
16 years ago |
|
detect-dce-stub-data.h
|
dce_iface, dce_opnum, dce_stub_data keyword support
|
16 years ago |
|
detect-decode-event.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-decode-event.h
|
VLAN Support
|
16 years ago |
|
detect-depth.c
|
Renaming errors (naming conventions)
|
16 years ago |
|
detect-depth.h
|
Initial add of the files.
|
16 years ago |
|
detect-distance.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-distance.h
|
Initial add of the files.
|
16 years ago |
|
detect-dsize.c
|
Renaming errors with naming conventions
|
16 years ago |
|
detect-dsize.h
|
64 bit cleanup part2
|
16 years ago |
|
detect-engine-address-ipv4.c
|
Memory leak cleanup in detectors
|
16 years ago |
|
detect-engine-address-ipv4.h
|
refactoring, tests for address engine ipv4
|
16 years ago |
|
detect-engine-address-ipv6.c
|
AddressCutNot fix for address engine ipv6
|
16 years ago |
|
detect-engine-address-ipv6.h
|
engine address ipv6 refactored
|
16 years ago |
|
detect-engine-address.c
|
Renaming errors with naming conventions
|
16 years ago |
|
detect-engine-address.h
|
detect-engine-address.[ch] refactoring
|
16 years ago |
|
detect-engine-iponly.c
|
bug87 Fix IPOnly veredicts on flows
|
16 years ago |
|
detect-engine-iponly.h
|
More engine init memleaks fixed. HashListTable remove function fixed.
|
16 years ago |
|
detect-engine-mpm.c
|
pack all the packet pattern scan and search packet setup for cuda into a function inside util-cuda-handlers.[ch]
|
16 years ago |
|
detect-engine-mpm.h
|
applayer uri match and modified http handling
|
16 years ago |
|
detect-engine-port.c
|
Renaming errors with naming conventions
|
16 years ago |
|
detect-engine-port.h
|
More engine init memleaks fixed. HashListTable remove function fixed.
|
16 years ago |
|
detect-engine-proto.c
|
Make sure icmp rules also apply to icmpv6
|
16 years ago |
|
detect-engine-proto.h
|
Fix app layer detect to actually work.
|
16 years ago |
|
detect-engine-siggroup.c
|
More examples of unittest helper functions usage reference
|
16 years ago |
|
detect-engine-siggroup.h
|
Unittests and style fix for detect-engine-siggroup.[ch]
|
16 years ago |
|
detect-engine-sigorder.c
|
Rename to Suricata.
|
16 years ago |
|
detect-engine-sigorder.h
|
Order the signatures based on certain rule parameters like actions, flowbits, flowvar, pktvar, priority etc
|
16 years ago |
|
detect-engine-threshold.c
|
Support for Classtype keyword and Classification Config file
|
16 years ago |
|
detect-engine-threshold.h
|
Threshold Rule
|
16 years ago |
|
detect-engine.c
|
Make unittests run more quiet.
|
16 years ago |
|
detect-engine.h
|
Adding unittest helper functions for building generic packets, checking arrays of expected match results, perform generic tests, etc. Look at util-unittest-helper.c and detect-ipproto.c for references
|
16 years ago |
|
detect-fast-pattern.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-fast-pattern.h
|
Support fast_pattern modifier keyword for content
|
16 years ago |
|
detect-flags.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-flags.h
|
Signature Flags Keyword
|
16 years ago |
|
detect-flow.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-flow.h
|
64 bit cleanup part2
|
16 years ago |
|
detect-flowbits.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-flowbits.h
|
FlowBits Unit Tests
|
16 years ago |
|
detect-flowint.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-flowint.h
|
Added support at Flowints for keywords isset and notset
|
16 years ago |
|
detect-flowvar.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-flowvar.h
|
http_cookie keywork support
|
16 years ago |
|
detect-fragbits.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-fragbits.h
|
FragBits Keyword
|
16 years ago |
|
detect-fragoffset.c
|
Renaming errors with naming conventions
|
16 years ago |
|
detect-fragoffset.h
|
FragOffset Rule Keyword
|
16 years ago |
|
detect-ftpbounce.c
|
Stream engine memory handling update
|
16 years ago |
|
detect-ftpbounce.h
|
Adding FTP app layer parser and ftpbounce detection at L7
|
16 years ago |
|
detect-gid.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-gid.h
|
Gid Keyword
|
16 years ago |
|
detect-http-cookie.c
|
Change the way we replace contents by http_method and http_cookie, fixing #90.
|
16 years ago |
|
detect-http-cookie.h
|
changed to DetectHttpCookieData
|
16 years ago |
|
detect-http-method.c
|
Fix file permissions.
|
16 years ago |
|
detect-http-method.h
|
fix code file permission
|
16 years ago |
|
detect-icmp-id.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-icmp-id.h
|
Add icmp_id keyword support
|
16 years ago |
|
detect-icmp-seq.c
|
Renaming errors with naming conventions
|
16 years ago |
|
detect-icmp-seq.h
|
ICMP Seq Rule Keyword
|
16 years ago |
|
detect-icode.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-icode.h
|
Changed printf's to logging API functions
|
16 years ago |
|
detect-id.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-id.h
|
Adding id keyword and unittests
|
16 years ago |
|
detect-ipopts.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-ipopts.h
|
IpOpts Rule Keyword
|
16 years ago |
|
detect-ipproto.c
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
detect-ipproto.h
|
Add ip_proto support.
|
16 years ago |
|
detect-isdataat.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-isdataat.h
|
Adding detect_content chunks handling for max_pattern_length and unittests. Updating modifiers to use it.
|
16 years ago |
|
detect-itype.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-itype.h
|
Changed printf's to logging API functions
|
16 years ago |
|
detect-metadata.c
|
Rename to Suricata.
|
16 years ago |
|
detect-metadata.h
|
Initial add of the files.
|
16 years ago |
|
detect-msg.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-msg.h
|
Initial add of the files.
|
16 years ago |
|
detect-noalert.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-noalert.h
|
Add noalert keyword for use with sigs that are used for capturing only.
|
16 years ago |
|
detect-nocase.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-nocase.h
|
Initial add of the files.
|
16 years ago |
|
detect-offset.c
|
Renaming errors (naming conventions)
|
16 years ago |
|
detect-offset.h
|
Initial add of the files.
|
16 years ago |
|
detect-parse.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-parse.h
|
Added http_method rule keyword.
|
16 years ago |
|
detect-pcre.c
|
Disable unused uri scanning code.
|
16 years ago |
|
detect-pcre.h
|
pcre P modifier support (pcre match over http body requests)
|
16 years ago |
|
detect-pktvar.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-pktvar.h
|
http_cookie keywork support
|
16 years ago |
|
detect-priority.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-priority.h
|
Support for Classtype keyword and Classification Config file
|
16 years ago |
|
detect-rawbytes.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-rawbytes.h
|
Initial add of the files.
|
16 years ago |
|
detect-recursive.c
|
Rename to Suricata.
|
16 years ago |
|
detect-recursive.h
|
Initial add of the files.
|
16 years ago |
|
detect-reference.c
|
Rename to Suricata.
|
16 years ago |
|
detect-reference.h
|
Initial add of the files.
|
16 years ago |
|
detect-rev.c
|
Rename to Suricata.
|
16 years ago |
|
detect-rev.h
|
Initial add of the files.
|
16 years ago |
|
detect-rpc.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-rpc.h
|
Added rpc keyword support at packet level
|
16 years ago |
|
detect-sameip.c
|
Rename to Suricata.
|
16 years ago |
|
detect-sameip.h
|
Sameip Keyword
|
16 years ago |
|
detect-seq.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-seq.h
|
Ack/Seq Keywords part 2
|
16 years ago |
|
detect-sid.c
|
Rename to Suricata.
|
16 years ago |
|
detect-sid.h
|
Initial add of the files.
|
16 years ago |
|
detect-stream_size.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-stream_size.h
|
stream size match function and unittests
|
16 years ago |
|
detect-tag.c
|
Add tag keyword stub
|
16 years ago |
|
detect-tag.h
|
Add tag keyword stub
|
16 years ago |
|
detect-threshold.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-threshold.h
|
Fix thresholding coding changing unlocked and supposed to be static memory areas.
|
16 years ago |
|
detect-tls-version.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-tls-version.h
|
Fix app layer detect to actually work.
|
16 years ago |
|
detect-ttl.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-ttl.h
|
TTL macros suppport
|
16 years ago |
|
detect-uricontent.c
|
Change the way we replace contents by http_method and http_cookie, fixing #90.
|
16 years ago |
|
detect-uricontent.h
|
Only inspect http flows against uri sigs, clean up uri scanning code.
|
16 years ago |
|
detect-urilen.c
|
app layer htp logging and better htp request handling. removed recent_in_tx.
|
16 years ago |
|
detect-urilen.h
|
urilen support for engine
|
16 years ago |
|
detect-window.c
|
Improve information about errors on signature failure
|
16 years ago |
|
detect-window.h
|
Adding unittest helper functions for building generic packets, checking arrays of expected match results, perform generic tests, etc. Look at util-unittest-helper.c and detect-ipproto.c for references
|
16 years ago |
|
detect-within.c
|
Improve distance/within/nocase handling, sig parsing error reporting.
|
16 years ago |
|
detect-within.h
|
Initial add of the files.
|
16 years ago |
|
detect.c
|
app layer htp logging and better htp request handling. removed recent_in_tx.
|
16 years ago |
|
detect.h
|
Change the way we replace contents by http_method and http_cookie, fixing #90.
|
16 years ago |
|
flow-alert-sid.c
|
Implement alert sid storage in the flow so we can check previous alerts in the flow.
|
16 years ago |
|
flow-alert-sid.h
|
Implement alert sid storage in the flow so we can check previous alerts in the flow.
|
16 years ago |
|
flow-bit.c
|
Rename to Suricata.
|
16 years ago |
|
flow-bit.h
|
Implement alert sid storage in the flow so we can check previous alerts in the flow.
|
16 years ago |
|
flow-hash.c
|
Fix packet flags field not being cleared properly when the packet is being reused. Add some debug statements and cleanup some.
|
16 years ago |
|
flow-hash.h
|
Rename to Suricata.
|
16 years ago |
|
flow-private.h
|
Changing mutex/spinlocks/conditions naming types
|
16 years ago |
|
flow-queue.c
|
Rename to Suricata.
|
16 years ago |
|
flow-queue.h
|
Rename to Suricata.
|
16 years ago |
|
flow-util.c
|
Fix not decreasing the flow use_cnt reference counter in some cases from the app layer detection code. This caused some streams to never fully time out and thus clutter up the flow table and session pool.
|
16 years ago |
|
flow-util.h
|
Fix not decreasing the flow use_cnt reference counter in some cases from the app layer detection code. This caused some streams to never fully time out and thus clutter up the flow table and session pool.
|
16 years ago |
|
flow-var.c
|
Rename to Suricata.
|
16 years ago |
|
flow-var.h
|
Implement alert sid storage in the flow so we can check previous alerts in the flow.
|
16 years ago |
|
flow.c
|
better htp memory handling & flow valgrind error fixed
|
16 years ago |
|
flow.h
|
bug87 Fix IPOnly veredicts on flows
|
16 years ago |
|
host.c
|
Rename to Suricata.
|
16 years ago |
|
host.h
|
Changing mutex/spinlocks/conditions naming types
|
16 years ago |
|
log-httplog.c
|
Fix two separate segv's in the http logging code.
|
16 years ago |
|
log-httplog.h
|
Consistency fix.. Xxxlog -> XxxLog.
|
16 years ago |
|
output.c
|
Have output modules register themselves so run mode configurator becomes aware of them for purposes of being configured from the config file.
|
16 years ago |
|
output.h
|
- rebase
|
16 years ago |
|
packet-queue.c
|
Rename to Suricata.
|
16 years ago |
|
packet-queue.h
|
Rename to Suricata.
|
16 years ago |
|
pkt-var.c
|
Rename to Suricata.
|
16 years ago |
|
pkt-var.h
|
64 bit cleanup part2
|
16 years ago |
|
queue.h
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
reputation.c
|
Renaming errors (naming conventions)
|
16 years ago |
|
reputation.h
|
First version of the reputation API
|
16 years ago |
|
respond-reject-libnet11.c
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
respond-reject-libnet11.h
|
udp decoding added icmp unreachables added to reject
|
16 years ago |
|
respond-reject.c
|
Fix reject code to not send resets for all alerts.
|
16 years ago |
|
respond-reject.h
|
support for thread exit constants
|
16 years ago |
|
runmodes.c
|
Cleanup threading cpu affinity and prio output.
|
16 years ago |
|
runmodes.h
|
Adding auto runmodes based on available core/cpu's. Setting thread priorities
|
16 years ago |
|
source-ipfw.c
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
source-ipfw.h
|
Intial IPFW support FreeBSD and OSX
|
16 years ago |
|
source-nfq-prototypes.h
|
Source NFQ update... less hackish, but still needs work as soon as we know how to do configuration.
|
16 years ago |
|
source-nfq.c
|
Fixup Linux compilation after applying win32 patches.
|
16 years ago |
|
source-nfq.h
|
Changing mutex/spinlocks/conditions naming types
|
16 years ago |
|
source-pcap-file.c
|
Using the loggin API in source-pcap and source-pcap-file
|
16 years ago |
|
source-pcap-file.h
|
Large update: pcap support, threading fixes, initial stream tracking, time handling, pool support, runmodes, decoders added, autojunk update.
|
16 years ago |
|
source-pcap.c
|
Using the loggin API in source-pcap and source-pcap-file
|
16 years ago |
|
source-pcap.h
|
Fix datalink retrieval for pcap file mode and nfq mode for use in unified2.
|
16 years ago |
|
source-pfring.c
|
small fix for source-pfring.c after stat err rename
|
16 years ago |
|
source-pfring.h
|
native PF_RING support with fixes
|
16 years ago |
|
stream-tcp-private.h
|
Fix up initialization and hopefully make the SEQ macro's fix up an 64bit issue we're seeing...
|
16 years ago |
|
stream-tcp-reassemble.c
|
Check reassembly limits against correct stream direction. Set proper direction flag in stream msgs.
|
16 years ago |
|
stream-tcp-reassemble.h
|
Stream engine memory handling update
|
16 years ago |
|
stream-tcp.c
|
Fixed Win32 compilation, unit tests now compile.
|
16 years ago |
|
stream-tcp.h
|
Stream engine memory handling update
|
16 years ago |
|
stream.c
|
Rename to Suricata.
|
16 years ago |
|
stream.h
|
Changing mutex/spinlocks/conditions naming types
|
16 years ago |
|
suricata-common.h
|
Fixup Linux compilation after applying win32 patches.
|
16 years ago |
|
suricata.c
|
Fix bug 99.
|
16 years ago |
|
suricata.h
|
Update version to 0.8.1
|
16 years ago |
|
threads.c
|
Rename to Suricata.
|
16 years ago |
|
threads.h
|
Win32 build fixed.
|
16 years ago |
|
threadvars.h
|
Adding auto runmodes based on available core/cpu's. Setting thread priorities
|
16 years ago |
|
tm-modules.c
|
memory leak fixes
|
16 years ago |
|
tm-modules.h
|
mpm b2g cuda support added
|
16 years ago |
|
tm-queuehandlers.c
|
Rename to Suricata.
|
16 years ago |
|
tm-queuehandlers.h
|
Adding a "flow" queue handler. This queue handler passes packets of the same flow to the same queue. Changed the default IDS mode to use this.
|
16 years ago |
|
tm-queues.c
|
Rename to Suricata.
|
16 years ago |
|
tm-queues.h
|
threading improvements. Replaced the use of slot(2/3) with varslot. Improve error handling in slot functions. Additional helper functions for thread creation
|
16 years ago |
|
tm-threads.c
|
Fixed Win32 compilation, unit tests now compile.
|
16 years ago |
|
tm-threads.h
|
Setting thread priorities with nice
|
16 years ago |
|
tmqh-flow.c
|
Rename to Suricata.
|
16 years ago |
|
tmqh-flow.h
|
Actually add the new queue handler.
|
16 years ago |
|
tmqh-nfq.c
|
Rename to Suricata.
|
16 years ago |
|
tmqh-nfq.h
|
Initial add of the files.
|
16 years ago |
|
tmqh-packetpool.c
|
quick way to make max_pending configurable.
|
16 years ago |
|
tmqh-packetpool.h
|
threading improvements. Replaced the use of slot(2/3) with varslot. Improve error handling in slot functions. Additional helper functions for thread creation
|
16 years ago |
|
tmqh-simple.c
|
Changed the way cuda dispatcher passes back results. Now each detection thread has it's own queue to which the dispatcher can pump packets back to the detect thread. Also, with cuda enabled and a non-cuda mpm being used, we won't create a dispatcher and instead call the b2g scan/search funtions directly instead of using the dispatcher.
|
16 years ago |
|
tmqh-simple.h
|
Changed the way cuda dispatcher passes back results. Now each detection thread has it's own queue to which the dispatcher can pump packets back to the detect thread. Also, with cuda enabled and a non-cuda mpm being used, we won't create a dispatcher and instead call the b2g scan/search funtions directly instead of using the dispatcher.
|
16 years ago |
|
util-binsearch.c
|
Rename to Suricata.
|
16 years ago |
|
util-binsearch.h
|
64 bit cleanup part2
|
16 years ago |
|
util-bloomfilter-counting.c
|
Rename to Suricata.
|
16 years ago |
|
util-bloomfilter-counting.h
|
64 bit cleanup part2
|
16 years ago |
|
util-bloomfilter.c
|
Fixup code to compile with -Wall -Werror -Wextra -Wno-unused-parameter compiler options.
|
16 years ago |
|
util-bloomfilter.h
|
64 bit cleanup part2
|
16 years ago |
|
util-byte.c
|
Renaming errors (naming conventions)
|
16 years ago |
|
util-byte.h
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
util-cidr.c
|
Rename to Suricata.
|
16 years ago |
|
util-cidr.h
|
64 bit cleanup part2
|
16 years ago |
|
util-classification-config.c
|
Renaming errors with naming conventions
|
16 years ago |
|
util-classification-config.h
|
Modify the classification config tests to use the buffer than a temp file and also fix an invalid free
|
16 years ago |
|
util-clock.h
|
Adding single pattern matcher algorithms. If you cannot store a context for the patterns, use SpmSearch() macro. Adding unittests and stats
|
16 years ago |
|
util-cpu.c
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
util-cpu.h
|
Detect the number of CPUs configured and online. Printing a small summary at the startup
|
16 years ago |
|
util-cuda-handlers.c
|
pack all the packet pattern scan and search packet setup for cuda into a function inside util-cuda-handlers.[ch]
|
16 years ago |
|
util-cuda-handlers.h
|
pack all the packet pattern scan and search packet setup for cuda into a function inside util-cuda-handlers.[ch]
|
16 years ago |
|
util-cuda.c
|
Mhz->MHz
|
16 years ago |
|
util-cuda.h
|
Added cuda logs for the engine, which shows device info and memory usage
|
16 years ago |
|
util-daemon.c
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
util-daemon.h
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
util-debug-filters.c
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
util-debug-filters.h
|
Intial IPFW support FreeBSD and OSX
|
16 years ago |
|
util-debug.c
|
Fixup Linux compilation after applying win32 patches.
|
16 years ago |
|
util-debug.h
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
util-enum.c
|
Host OS Table API. Modifications also make to the radix tree to handle netblocks
|
16 years ago |
|
util-enum.h
|
Implementation of the logging module
|
16 years ago |
|
util-error.c
|
Setting thread priorities with nice
|
16 years ago |
|
util-error.h
|
Setting thread priorities with nice
|
16 years ago |
|
util-fix_checksum.c
|
Break out checksum fixup code to make the license separation more clear.
|
16 years ago |
|
util-fix_checksum.h
|
Break out checksum fixup code to make the license separation more clear.
|
16 years ago |
|
util-fmemopen.c
|
Fix compilation on Linux, add error checking to Win32 SCFmemopen and properly indent.
|
16 years ago |
|
util-fmemopen.h
|
Fixed Win32 compilation, unit tests now compile.
|
16 years ago |
|
util-hash.c
|
Modify the classification config tests to use the buffer than a temp file and also fix an invalid free
|
16 years ago |
|
util-hash.h
|
Modify the classification config tests to use the buffer than a temp file and also fix an invalid free
|
16 years ago |
|
util-hashlist.c
|
fixed bug 18
|
16 years ago |
|
util-hashlist.h
|
64 bit cleanup part2
|
16 years ago |
|
util-host-os-info.c
|
Renaming errors (naming conventions)
|
16 years ago |
|
util-host-os-info.h
|
Support host os flavour retrieval functions with raw network addresses
|
16 years ago |
|
util-mpm-b2g-cuda.c
|
Changed the way cuda dispatcher passes back results. Now each detection thread has it's own queue to which the dispatcher can pump packets back to the detect thread. Also, with cuda enabled and a non-cuda mpm being used, we won't create a dispatcher and instead call the b2g scan/search funtions directly instead of using the dispatcher.
|
16 years ago |
|
util-mpm-b2g-cuda.h
|
CUDA build system support & compile fixes
|
16 years ago |
|
util-mpm-b2g.c
|
mpm b2g cuda support added
|
16 years ago |
|
util-mpm-b2g.h
|
pattern matcher options support
|
16 years ago |
|
util-mpm-b3g.c
|
mpm b2g cuda support added
|
16 years ago |
|
util-mpm-b3g.h
|
pattern matcher options support
|
16 years ago |
|
util-mpm-wumanber.c
|
mpm b2g cuda support added
|
16 years ago |
|
util-mpm-wumanber.h
|
pattern matcher options support
|
16 years ago |
|
util-mpm.c
|
mpm b2g cuda support added
|
16 years ago |
|
util-mpm.h
|
mpm b2g cuda support added
|
16 years ago |
|
util-pool.c
|
Stream engine memory handling update
|
16 years ago |
|
util-pool.h
|
Big update:
|
16 years ago |
|
util-print.c
|
Fix two separate segv's in the http logging code.
|
16 years ago |
|
util-print.h
|
64 bit cleanup part2
|
16 years ago |
|
util-radix-tree.c
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
util-radix-tree.h
|
First version of the reputation API
|
16 years ago |
|
util-random.c
|
Move rand seed code into util-random
|
16 years ago |
|
util-random.h
|
Move rand seed code into util-random
|
16 years ago |
|
util-rule-vars.c
|
Fixup unittests that use buffers that simulate configuration files. They now include the YAML header.
|
16 years ago |
|
util-rule-vars.h
|
Support vars lookup from conf file. Current patch support address and port group vars lookup
|
16 years ago |
|
util-spm-bm.c
|
Small fix
|
16 years ago |
|
util-spm-bm.h
|
Adding single pattern matcher algorithms. If you cannot store a context for the patterns, use SpmSearch() macro. Adding unittests and stats
|
16 years ago |
|
util-spm-bs.c
|
Adding single pattern matcher algorithms. If you cannot store a context for the patterns, use SpmSearch() macro. Adding unittests and stats
|
16 years ago |
|
util-spm-bs.h
|
Adding single pattern matcher algorithms. If you cannot store a context for the patterns, use SpmSearch() macro. Adding unittests and stats
|
16 years ago |
|
util-spm-bs2bm.c
|
Adding single pattern matcher algorithms. If you cannot store a context for the patterns, use SpmSearch() macro. Adding unittests and stats
|
16 years ago |
|
util-spm-bs2bm.h
|
Adding single pattern matcher algorithms. If you cannot store a context for the patterns, use SpmSearch() macro. Adding unittests and stats
|
16 years ago |
|
util-spm.c
|
Make unittests run more quiet.
|
16 years ago |
|
util-spm.h
|
Adding single pattern matcher algorithms. If you cannot store a context for the patterns, use SpmSearch() macro. Adding unittests and stats
|
16 years ago |
|
util-strlcatu.c
|
Add OpenBSD's strlcpy and strlcat and replace all strcat/strcpy/strncat/strncpy by those calls.
|
16 years ago |
|
util-strlcpyu.c
|
Add OpenBSD's strlcpy and strlcat and replace all strcat/strcpy/strncat/strncpy by those calls.
|
16 years ago |
|
util-time.c
|
Move rand seed code into util-random
|
16 years ago |
|
util-time.h
|
Move rand seed code into util-random
|
16 years ago |
|
util-unittest-helper.c
|
Renaming errors (naming conventions)
|
16 years ago |
|
util-unittest-helper.h
|
More examples of unittest helper functions usage reference
|
16 years ago |
|
util-unittest.c
|
Rename to Suricata.
|
16 years ago |
|
util-unittest.h
|
Bug 6
|
16 years ago |
|
util-var-name.c
|
Rename to Suricata.
|
16 years ago |
|
util-var-name.h
|
Cleanups
|
16 years ago |
|
util-var.c
|
Implement alert sid storage in the flow so we can check previous alerts in the flow.
|
16 years ago |
|
util-var.h
|
Implement alert sid storage in the flow so we can check previous alerts in the flow.
|
16 years ago |
|
win32-misc.c
|
Fixed Win32 compilation, unit tests now compile.
|
16 years ago |
|
win32-misc.h
|
Fixed Win32 compilation, unit tests now compile.
|
16 years ago |
|
win32-syslog.h
|
Added missing win32 files.
|
16 years ago |
