| .. |
|
Makefile.am
|
support for printing protocol names for known protocol
|
15 years ago |
|
action-globals.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-debuglog.c
|
Fix app layer sigs being recognized as decoder event only or ip only.
|
15 years ago |
|
alert-debuglog.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-fastlog.c
|
support for printing protocol names for known protocol
|
15 years ago |
|
alert-fastlog.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-prelude.c
|
Make pcap file mode read multiple packets per 'read'. Update threading model to deal with this.
|
15 years ago |
|
alert-prelude.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
alert-unified-alert.c
|
Make pcap file mode read multiple packets per 'read'. Update threading model to deal with this.
|
15 years ago |
|
alert-unified-alert.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-unified-log.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
alert-unified-log.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-unified2-alert.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
alert-unified2-alert.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
app-layer-dcerpc-common.h
|
add internal ids to uuids. Use these internal ids to match uuids from bind and bind_ack. Create a new uuid list to hold all accepted uuids. Modifications to dce-iface to accomodate these changes as well + unittests
|
15 years ago |
|
app-layer-dcerpc-udp.c
|
Better handle low memory conditions.
|
15 years ago |
|
app-layer-dcerpc-udp.h
|
Fix dcerpc unittest, add comments.
|
15 years ago |
|
app-layer-dcerpc.c
|
change dcerpc warnings into debugs.
|
15 years ago |
|
app-layer-dcerpc.h
|
First stab at creating a stateful detection engine.
|
15 years ago |
|
app-layer-detect-proto.c
|
Many small performance updates.
|
15 years ago |
|
app-layer-detect-proto.h
|
UDP support at AppLayer message handling
|
15 years ago |
|
app-layer-ftp.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
app-layer-ftp.h
|
Many small performance updates.
|
15 years ago |
|
app-layer-htp.c
|
Compiler warning fix for memory macro's. Small layout changes.
|
15 years ago |
|
app-layer-htp.h
|
moving http_client_body logic to use it per transactions. Adding unittests
|
15 years ago |
|
app-layer-nbss.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
app-layer-parser.c
|
Fix tcp connections that are reset (RST packet) not always inspecting the reassembled stream. Update transaction id code to make sure both directions of a transaction are inspected before incrementing the inspect_id.
|
15 years ago |
|
app-layer-parser.h
|
Many small performance updates.
|
15 years ago |
|
app-layer-protos.h
|
dcerpc udp support
|
15 years ago |
|
app-layer-smb.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
app-layer-smb.h
|
Many small performance updates.
|
15 years ago |
|
app-layer-smb2.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
app-layer-smb2.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
app-layer-ssh.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
app-layer-ssh.h
|
Many small performance updates.
|
15 years ago |
|
app-layer-ssl.c
|
Comment out broken SSLParserTest03 test.
|
15 years ago |
|
app-layer-ssl.h
|
Many small performance updates.
|
15 years ago |
|
app-layer-tls.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
app-layer-tls.h
|
Many small performance updates.
|
15 years ago |
|
app-layer.c
|
Drop streams on inline mode when a drop rule match from a reassembled stream and/or app layer inspection
|
15 years ago |
|
app-layer.h
|
UDP support at AppLayer message handling
|
15 years ago |
|
conf-yaml-loader.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
conf-yaml-loader.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
conf.c
|
Add support for retrieving float and double variables from the configuration.
|
15 years ago |
|
conf.h
|
Add support for retrieving float and double variables from the configuration.
|
15 years ago |
|
counters.c
|
Print engine uptime on the same line as date and time.
|
15 years ago |
|
counters.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
cuda-packet-batcher.c
|
Fix seg fault while running cuda tests. Don't set the alarm while running unittests, inside cuda-packet-batcher.c. Will result in a seg while the sig handler for ALRM in invoked
|
15 years ago |
|
cuda-packet-batcher.h
|
Fix seg fault while running cuda tests. Don't set the alarm while running unittests, inside cuda-packet-batcher.c. Will result in a seg while the sig handler for ALRM in invoked
|
15 years ago |
|
data-queue.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
data-queue.h
|
Many small performance updates.
|
15 years ago |
|
debug.h
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-ethernet.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-ethernet.h
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-events.h
|
Reduce size of event bit array in the packet structure.
|
15 years ago |
|
decode-gre.c
|
Better handle low memory conditions.
|
15 years ago |
|
decode-gre.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-icmpv4.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-icmpv4.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-icmpv6.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-icmpv6.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-ipv4.c
|
Better handle low memory conditions.
|
15 years ago |
|
decode-ipv4.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-ipv6.c
|
Fix thresholding issues.
|
15 years ago |
|
decode-ipv6.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-ppp.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-ppp.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-pppoe.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-pppoe.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-raw.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-raw.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-sll.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-sll.h
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-tcp.c
|
Many small performance updates.
|
15 years ago |
|
decode-tcp.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-udp.c
|
Applayer to flow fixes and cleanups.
|
15 years ago |
|
decode-udp.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-vlan.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-vlan.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode.c
|
Disable per second counters as they are unreliable.
|
15 years ago |
|
decode.h
|
Many small performance updates.
|
15 years ago |
|
defrag.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
defrag.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ack.c
|
Fix unittests after ip_proto keyword change.
|
15 years ago |
|
detect-ack.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-asn1.c
|
Fix valgrind ctx error on asn1 test 06
|
15 years ago |
|
detect-asn1.h
|
ASN1 decoder and keyword implementation
|
15 years ago |
|
detect-bytejump.c
|
fix bytejump segv from bug 237
|
15 years ago |
|
detect-bytejump.h
|
dce stub content keywords support using dcepayload.c support for all dce related content keywords
|
15 years ago |
|
detect-bytetest.c
|
fix bytetest segv from bug 237
|
15 years ago |
|
detect-bytetest.h
|
dce stub content keywords support using dcepayload.c support for all dce related content keywords
|
15 years ago |
|
detect-classtype.c
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
detect-classtype.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-content.c
|
Many small performance updates.
|
15 years ago |
|
detect-content.h
|
Many small performance updates.
|
15 years ago |
|
detect-csum.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-csum.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-dce-iface.c
|
Fix unittest.
|
15 years ago |
|
detect-dce-iface.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-dce-opnum.c
|
Many small performance updates.
|
15 years ago |
|
detect-dce-opnum.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-dce-stub-data.c
|
Many small performance updates.
|
15 years ago |
|
detect-dce-stub-data.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-decode-event.c
|
Make sure decoder event rules are inspected even if the packet is invalid and has no addesses or proto. Update fast log and alert debug log to display the alerts. Fixes #179.
|
15 years ago |
|
detect-decode-event.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-depth.c
|
Fix for bug 207 (depth/offset not correctly updated on certain cases)
|
15 years ago |
|
detect-depth.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-detection-filter.c
|
Fix -Wall -Werror compilation after unittests update.
|
15 years ago |
|
detect-detection-filter.h
|
Fix detection_filter issue.
|
15 years ago |
|
detect-distance.c
|
fix NULL indirection while parsing dce sigs - clang fix
|
15 years ago |
|
detect-distance.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-dsize.c
|
Make sure we inspect all outstanding reassembled stream chunks (smsg) if the stream is shutting down. Make sure to do inspect signatures that use dsize against the tcp packet payload, even if that payload was already added to the stream. Likewise, the dsize signatures are not inspected against the reassembled stream.
|
15 years ago |
|
detect-dsize.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-address-ipv4.c
|
Use Address structure in DetectAddress struct.
|
15 years ago |
|
detect-engine-address-ipv4.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-address-ipv6.c
|
Use Address structure in DetectAddress struct.
|
15 years ago |
|
detect-engine-address-ipv6.h
|
Use Address structure in DetectAddress struct.
|
15 years ago |
|
detect-engine-address.c
|
Make signature address matching more cache efficient.
|
15 years ago |
|
detect-engine-address.h
|
Make signature address matching more cache efficient.
|
15 years ago |
|
detect-engine-alert.c
|
Drop streams on inline mode when a drop rule match from a reassembled stream and/or app layer inspection
|
15 years ago |
|
detect-engine-alert.h
|
Drop streams on inline mode when a drop rule match from a reassembled stream and/or app layer inspection
|
15 years ago |
|
detect-engine-dcepayload.c
|
Many small performance updates.
|
15 years ago |
|
detect-engine-dcepayload.h
|
Move dce payload inspection to stateful detection engine.
|
15 years ago |
|
detect-engine-iponly.c
|
Drop streams on inline mode when a drop rule match from a reassembled stream and/or app layer inspection
|
15 years ago |
|
detect-engine-iponly.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-mpm.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
detect-engine-mpm.h
|
Don't scan TCP packet payload if it was added to the stream. Inspect the tcp stream with the correct packet. Should fix #184 and #185.
|
15 years ago |
|
detect-engine-payload.c
|
make pcre respect discontinue_matching flag in content matching functions
|
15 years ago |
|
detect-engine-payload.h
|
Inspect the reassembled stream together with the packet payload in the same direction.
|
15 years ago |
|
detect-engine-port.c
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
detect-engine-port.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-proto.c
|
Many small performance updates.
|
15 years ago |
|
detect-engine-proto.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-siggroup.c
|
Initial version of a new bitmask based signature pre-filtering method.
|
15 years ago |
|
detect-engine-siggroup.h
|
Prefilter signatures before fully scanning them.
|
15 years ago |
|
detect-engine-sigorder.c
|
Fix for bug 204 (signature ordering with flowbit priority)
|
15 years ago |
|
detect-engine-sigorder.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-state.c
|
Many small performance updates.
|
15 years ago |
|
detect-engine-state.h
|
Change stateful detection engine to be able to start the stateful detection separate from other sigs. Fixes bugs #213, #214, #215.
|
15 years ago |
|
detect-engine-tag.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
detect-engine-tag.h
|
Adding tag keyword support
|
15 years ago |
|
detect-engine-threshold.c
|
Fix threshold handling ip addr
|
15 years ago |
|
detect-engine-threshold.h
|
Cleanup thresholding code.
|
15 years ago |
|
detect-engine-uri.c
|
Many small performance updates.
|
15 years ago |
|
detect-engine-uri.h
|
add pcre with U modifiers to the umatch sigmatch list. fix for bug 155
|
15 years ago |
|
detect-engine.c
|
Further improve B2gc. Add B2gm. Improve memory layout.
|
15 years ago |
|
detect-engine.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-fast-pattern.c
|
Fix unittests after ip_proto keyword change.
|
15 years ago |
|
detect-fast-pattern.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flags.c
|
Clean up flags keyword.
|
15 years ago |
|
detect-flags.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flow.c
|
Improve detection of app layer, making sure we only handle app layer on 'established' packets. Should really fix #166.
|
15 years ago |
|
detect-flow.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flowbits.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
detect-flowbits.h
|
Fix for bug 204 (signature ordering with flowbit priority)
|
15 years ago |
|
detect-flowint.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
detect-flowint.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flowvar.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
detect-flowvar.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-fragbits.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
detect-fragbits.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-fragoffset.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-fragoffset.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ftpbounce.c
|
Many small performance updates.
|
15 years ago |
|
detect-ftpbounce.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-gid.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-gid.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-client-body.c
|
Many small performance updates.
|
15 years ago |
|
detect-http-client-body.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-cookie.c
|
Many small performance updates.
|
15 years ago |
|
detect-http-cookie.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-header.c
|
Many small performance updates.
|
15 years ago |
|
detect-http-header.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-method.c
|
Many small performance updates.
|
15 years ago |
|
detect-http-method.h
|
Fixed broken nocase for http_method and http_header
|
15 years ago |
|
detect-http-uri.c
|
Updating other http modifiers for sigs with fast_pattern option
|
15 years ago |
|
detect-http-uri.h
|
Add support for http_uri keyword
|
15 years ago |
|
detect-icmp-id.c
|
Fix -Wall -Werror compilation after unittests update.
|
15 years ago |
|
detect-icmp-id.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-icmp-seq.c
|
Fix -Wall -Werror compilation after unittests update.
|
15 years ago |
|
detect-icmp-seq.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-icode.c
|
Fix -Wall -Werror compilation after unittests update.
|
15 years ago |
|
detect-icode.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-id.c
|
Null deref fix for detect-id.c
|
15 years ago |
|
detect-id.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ipopts.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-ipopts.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ipproto.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-ipproto.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-isdataat.c
|
fix seg fault due to premature cleanup/double cleanup for byte(jump|test), isdataat, on seeing no previous relative keywords
|
15 years ago |
|
detect-isdataat.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-itype.c
|
Fix -Wall -Werror compilation after unittests update.
|
15 years ago |
|
detect-itype.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-metadata.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-metadata.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-msg.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-msg.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-noalert.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-noalert.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-nocase.c
|
Fixed broken nocase for http_method and http_header
|
15 years ago |
|
detect-nocase.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-offset.c
|
Fix for bug 207 (depth/offset not correctly updated on certain cases)
|
15 years ago |
|
detect-offset.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-parse.c
|
fix null dereference in detect parse test - clang fix
|
15 years ago |
|
detect-parse.h
|
fix signature parsing to how snort does it for content based keywords along with dce_stub_data
|
15 years ago |
|
detect-pcre.c
|
Fix pcre compilation with debug enabled.
|
15 years ago |
|
detect-pcre.h
|
Many small performance updates.
|
15 years ago |
|
detect-pktvar.c
|
GPL and Copyright header updates.
|
15 years ago |
|
detect-pktvar.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-priority.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-priority.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rawbytes.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rawbytes.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-recursive.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-recursive.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-reference.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-reference.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rev.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rev.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rpc.c
|
Fix -Wall -Werror compilation after unittests update.
|
15 years ago |
|
detect-rpc.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-sameip.c
|
Fix unittests after ip_proto keyword change.
|
15 years ago |
|
detect-sameip.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-seq.c
|
More thoroughly cleanup a Packet when we recycle it. Fixes a corner case where we'd have a invalid tcp packet but p->proto would still say IPPROTO_TCP because of a previous run. Fixes bug #187.
|
15 years ago |
|
detect-seq.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-sid.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-sid.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ssh-proto-version.c
|
Many small performance updates.
|
15 years ago |
|
detect-ssh-proto-version.h
|
Adding ssh app layer module with two new keywords: ssh.protoversion and ssh.softwareversion
|
15 years ago |
|
detect-ssh-software-version.c
|
Many small performance updates.
|
15 years ago |
|
detect-ssh-software-version.h
|
Adding ssh app layer module with two new keywords: ssh.protoversion and ssh.softwareversion
|
15 years ago |
|
detect-stream_size.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-stream_size.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-tag.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
detect-tag.h
|
Fixing flow cleanup and ctx initialization
|
15 years ago |
|
detect-threshold.c
|
Fix unittests after ip_proto keyword change.
|
15 years ago |
|
detect-threshold.h
|
Adding rate_filter support for threshold.config, multiline support and unittests
|
15 years ago |
|
detect-tls-version.c
|
Many small performance updates.
|
15 years ago |
|
detect-tls-version.h
|
support for sslv2/sslv3 their unit tests and better stream no reassembly flag handling
|
15 years ago |
|
detect-ttl.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-ttl.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-uricontent.c
|
Many small performance updates.
|
15 years ago |
|
detect-uricontent.h
|
Many small performance updates.
|
15 years ago |
|
detect-urilen.c
|
Many small performance updates.
|
15 years ago |
|
detect-urilen.h
|
Moving urilen inspection to detect-engine-uri. Adding unittests for pcre /U and urilen, in combination with uricontent
|
15 years ago |
|
detect-window.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-window.h
|
Moving alert logic to detect-engine-alert.c
|
15 years ago |
|
detect-within.c
|
fix NULL indirection while parsing dce sigs - clang fix
|
15 years ago |
|
detect-within.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect.c
|
Initial version of a new bitmask based signature pre-filtering method.
|
15 years ago |
|
detect.h
|
Initial version of a new bitmask based signature pre-filtering method.
|
15 years ago |
|
flow-alert-sid.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
flow-alert-sid.h
|
GPL and Copyright header updates.
|
15 years ago |
|
flow-bit.c
|
Cleanup thresholding code.
|
15 years ago |
|
flow-bit.h
|
GPL and Copyright header updates.
|
15 years ago |
|
flow-hash.c
|
Fix segv conditions caused by broken flow cleanup code.
|
15 years ago |
|
flow-hash.h
|
GPL and Copyright header updates.
|
15 years ago |
|
flow-private.h
|
Switch flow memuse counter to the atomic api.
|
15 years ago |
|
flow-queue.c
|
Adding some flow improvements and recovery on emergency mode
|
15 years ago |
|
flow-queue.h
|
Many small performance updates.
|
15 years ago |
|
flow-util.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
flow-util.h
|
Fix segv conditions caused by broken flow cleanup code.
|
15 years ago |
|
flow-var.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
flow-var.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
flow.c
|
Many small performance updates.
|
15 years ago |
|
flow.h
|
Many small performance updates.
|
15 years ago |
|
host.c
|
fixed the typo in byte_jump and host.c, Thanks to rmkml for pointing out
|
15 years ago |
|
host.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
log-httplog.c
|
Fix HTTP HEAD detection code.
|
15 years ago |
|
log-httplog.h
|
GPL and Copyright header updates.
|
15 years ago |
|
output.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
output.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
packet-queue.c
|
Attempt to work around NULL packets we're seeing ending up in queues when the compiler has optimized our code.
|
15 years ago |
|
packet-queue.h
|
GPL and Copyright header updates.
|
15 years ago |
|
pkt-var.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
pkt-var.h
|
GPL and Copyright header updates.
|
15 years ago |
|
queue.h
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
reputation.c
|
Fix compiler warning about incomplete prototype (2).
|
15 years ago |
|
reputation.h
|
Fix compiler warning about incomplete prototype (2).
|
15 years ago |
|
respond-reject-libnet11.c
|
GPL and Copyright header updates.
|
15 years ago |
|
respond-reject-libnet11.h
|
GPL and Copyright header updates.
|
15 years ago |
|
respond-reject.c
|
Make pcap file mode read multiple packets per 'read'. Update threading model to deal with this.
|
15 years ago |
|
respond-reject.h
|
Make pcap file mode read multiple packets per 'read'. Update threading model to deal with this.
|
15 years ago |
|
runmodes.c
|
Make outputs part of the flowpinned threads in the AutoFp runmode.
|
15 years ago |
|
runmodes.h
|
Add a (disabled by default) flow pinned runmode for file pcap.
|
15 years ago |
|
source-erf-dag.c
|
o Changed SCMalloc to DecodeThreadVarsAlloc in Decode thread initialization. (Ish) o Changed htons to noths. (Ish) o Added support for handling DAG cards running DSM modules and other non-standard ETH ERF types. o Added support for allowing gracefull restarts of the fetch thread if it fails to read an ERF properly.
|
15 years ago |
|
source-erf-dag.h
|
Add initial support for reading packets from a DAG card, we only support reading from a single stream at this time.
|
15 years ago |
|
source-erf-file.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
source-erf-file.h
|
Support for reading ERF files.
|
15 years ago |
|
source-ipfw.c
|
PacketQueue postp added to TmEcodes for ipfw and pf_ring to silence compiler warnings
|
15 years ago |
|
source-ipfw.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
source-nfq-prototypes.h
|
GPL and Copyright header updates.
|
15 years ago |
|
source-nfq.c
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
source-nfq.h
|
GPL and Copyright header updates.
|
15 years ago |
|
source-pcap-file.c
|
In case of error in pcap file reading mode, we shut the engine down hard instead of gracefully.
|
15 years ago |
|
source-pcap-file.h
|
GPL and Copyright header updates.
|
15 years ago |
|
source-pcap.c
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
source-pcap.h
|
GPL and Copyright header updates.
|
15 years ago |
|
source-pfring.c
|
PF_RING hang at exit fix
|
15 years ago |
|
source-pfring.h
|
GPL and Copyright header updates.
|
15 years ago |
|
stream-tcp-private.h
|
Fix bug 205 (at stream-tcp-reassemble)
|
15 years ago |
|
stream-tcp-reassemble.c
|
added the counter for tcp.segment_memcap_drop to show the dropped segments count due to memory limit
|
15 years ago |
|
stream-tcp-reassemble.h
|
added the counter for tcp.segment_memcap_drop to show the dropped segments count due to memory limit
|
15 years ago |
|
stream-tcp.c
|
added the counter for tcp.segment_memcap_drop to show the dropped segments count due to memory limit
|
15 years ago |
|
stream-tcp.h
|
support for several tcp evasion attacks. Thanks to Judy Novak and G2 Inc for reporting them
|
15 years ago |
|
stream.c
|
Don't scan TCP packet payload if it was added to the stream. Inspect the tcp stream with the correct packet. Should fix #184 and #185.
|
15 years ago |
|
stream.h
|
Don't scan TCP packet payload if it was added to the stream. Inspect the tcp stream with the correct packet. Should fix #184 and #185.
|
15 years ago |
|
suricata-common.h
|
Many small performance updates.
|
15 years ago |
|
suricata.c
|
support for printing protocol names for known protocol
|
15 years ago |
|
suricata.h
|
Switch to faster tolower function for u8_tolower.
|
15 years ago |
|
threads.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
threads.h
|
Fix SCondWait -> SCCondWait typo.
|
15 years ago |
|
threadvars.h
|
allow counters clubbing for detect TM
|
15 years ago |
|
tm-modules.c
|
GPL and Copyright header updates.
|
15 years ago |
|
tm-modules.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tm-queuehandlers.c
|
Lockfree ringbuffer wip.
|
15 years ago |
|
tm-queuehandlers.h
|
Split ringbuffer queue handler into multiple, for mrsw, srsw, srmw modes.
|
15 years ago |
|
tm-queues.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tm-queues.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tm-threads.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tm-threads.h
|
Fix cuda compilation.
|
15 years ago |
|
tmqh-flow.c
|
Fix SCondWait -> SCCondWait typo.
|
15 years ago |
|
tmqh-flow.h
|
GPL and Copyright header updates.
|
15 years ago |
|
tmqh-nfq.c
|
GPL and Copyright header updates.
|
15 years ago |
|
tmqh-nfq.h
|
GPL and Copyright header updates.
|
15 years ago |
|
tmqh-packetpool.c
|
Make malloc errors on initialization stage a fatal error, resulting on a exit() call
|
15 years ago |
|
tmqh-packetpool.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
tmqh-ringbuffer.c
|
Make malloc errors on initialization stage a fatal error, resulting on a exit() call
|
15 years ago |
|
tmqh-ringbuffer.h
|
Lockfree ringbuffer wip.
|
15 years ago |
|
tmqh-simple.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tmqh-simple.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
util-action.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-action.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-atomic.h
|
Reference atomic vars with SC_ATOMIC_EXTERN properly (considering if we support atomic operations or not)
|
15 years ago |
|
util-binsearch.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-binsearch.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-bloomfilter-counting.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-bloomfilter-counting.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-bloomfilter.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-bloomfilter.h
|
Change BloomFilter structure layout to reflect order of access.
|
15 years ago |
|
util-byte.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-byte.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-cidr.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-cidr.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-classification-config.c
|
Add support for class id in classification code. Submitted by firnsy@securixlive.com, thanks.
|
15 years ago |
|
util-classification-config.h
|
Add support for class id in classification code. Submitted by firnsy@securixlive.com, thanks.
|
15 years ago |
|
util-clock.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-cpu.c
|
Basic rule profiling even though the results may be skewed by a bad rule in a grouping of rules.
|
15 years ago |
|
util-cpu.h
|
Basic rule profiling even though the results may be skewed by a bad rule in a grouping of rules.
|
15 years ago |
|
util-cuda-handlers.c
|
add --list-cuda-cards option to list the cuda cards on the system. Add conf parameter to select the cuda device to use. Also change the threshhold limit to 2.4k packets to buffer
|
15 years ago |
|
util-cuda-handlers.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
util-cuda.c
|
add --list-cuda-cards option to list the cuda cards on the system. Add conf parameter to select the cuda device to use. Also change the threshhold limit to 2.4k packets to buffer
|
15 years ago |
|
util-cuda.h
|
add --list-cuda-cards option to list the cuda cards on the system. Add conf parameter to select the cuda device to use. Also change the threshhold limit to 2.4k packets to buffer
|
15 years ago |
|
util-daemon.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-daemon.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-debug-filters.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
util-debug-filters.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-debug.c
|
Make malloc errors on initialization stage a fatal error, resulting on a exit() call
|
15 years ago |
|
util-debug.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-decode-asn1.c
|
Rename asn1 files, fix an invalid free, fix improper init of vars in one unittest.
|
15 years ago |
|
util-decode-asn1.h
|
Rename asn1 files, fix an invalid free, fix improper init of vars in one unittest.
|
15 years ago |
|
util-enum.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-enum.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-error.c
|
Make malloc errors on initialization stage a fatal error, resulting on a exit() call
|
15 years ago |
|
util-error.h
|
Improve out of memory handling during initialization.
|
15 years ago |
|
util-fix_checksum.c
|
…
|
|
|
util-fix_checksum.h
|
…
|
|
|
util-fmemopen.c
|
Adding rate_filter support for threshold.config, multiline support and unittests
|
15 years ago |
|
util-fmemopen.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-hash.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
util-hash.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-hashlist.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
util-hashlist.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-host-os-info.c
|
Make malloc errors on initialization stage a fatal error, resulting on a exit() call
|
15 years ago |
|
util-host-os-info.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-mem.h
|
Compiler warning fix for memory macro's. Small layout changes.
|
15 years ago |
|
util-memcmp.c
|
Fix retval of SCMemcmp for non-SIMD implementation.
|
15 years ago |
|
util-memcmp.h
|
Fix retval of SCMemcmp for non-SIMD implementation.
|
15 years ago |
|
util-mpm-b2g-cuda-kernel.cu
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
util-mpm-b2g-cuda.c
|
some minor modifications to the b2g cuda tests
|
15 years ago |
|
util-mpm-b2g-cuda.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
util-mpm-b2g.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
util-mpm-b2g.h
|
Further improve B2gc. Add B2gm. Improve memory layout.
|
15 years ago |
|
util-mpm-b2gc.c
|
Add memcmp functions for SSE4.1 and SSE4.2.
|
15 years ago |
|
util-mpm-b2gc.h
|
Many small performance updates.
|
15 years ago |
|
util-mpm-b2gm.c
|
Remove unused code from b2gm.
|
15 years ago |
|
util-mpm-b2gm.h
|
Further improve B2gc. Add B2gm. Improve memory layout.
|
15 years ago |
|
util-mpm-b3g.c
|
Further improve B2gc. Add B2gm. Improve memory layout.
|
15 years ago |
|
util-mpm-b3g.h
|
Complete conversion of pattern id mpm storage vs sig id storage.
|
15 years ago |
|
util-mpm-wumanber.c
|
Further improve B2gc. Add B2gm. Improve memory layout.
|
15 years ago |
|
util-mpm-wumanber.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-mpm.c
|
Further improve B2gc. Add B2gm. Improve memory layout.
|
15 years ago |
|
util-mpm.h
|
Further improve B2gc. Add B2gm. Improve memory layout.
|
15 years ago |
|
util-optimize.h
|
Further improve B2gc. Add B2gm. Improve memory layout.
|
15 years ago |
|
util-pidfile.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-pidfile.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-pool.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-pool.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-print.c
|
Make sure decoder event rules are inspected even if the packet is invalid and has no addesses or proto. Update fast log and alert debug log to display the alerts. Fixes #179.
|
15 years ago |
|
util-print.h
|
Make sure decoder event rules are inspected even if the packet is invalid and has no addesses or proto. Update fast log and alert debug log to display the alerts. Fixes #179.
|
15 years ago |
|
util-privs.c
|
set proper caps based run_mode
|
15 years ago |
|
util-privs.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-profiling.c
|
Fix bug 217 (segv on profiling summary if no rule was specified
|
15 years ago |
|
util-profiling.h
|
add profiling to stateful detection engine + other fixups.
|
15 years ago |
|
util-proto-name.c
|
support for printing protocol names for known protocol
|
15 years ago |
|
util-proto-name.h
|
support for printing protocol names for known protocol
|
15 years ago |
|
util-radix-tree.c
|
Add memcmp api with a plain memcmp function and a SSE3 accelerated memcmp.
|
15 years ago |
|
util-radix-tree.h
|
Many small performance updates.
|
15 years ago |
|
util-random.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-random.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-ringbuffer.c
|
Add unittests for ringbuffer.
|
15 years ago |
|
util-ringbuffer.h
|
Add unittests for ringbuffer.
|
15 years ago |
|
util-rule-vars.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
util-rule-vars.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm-bm.c
|
Make malloc errors on initialization stage a fatal error, resulting on a exit() call
|
15 years ago |
|
util-spm-bm.h
|
Make malloc errors on initialization stage a fatal error, resulting on a exit() call
|
15 years ago |
|
util-spm-bs.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm-bs.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm-bs2bm.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm-bs2bm.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
util-spm.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-strlcatu.c
|
Add OpenBSD's strlcpy and strlcat and replace all strcat/strcpy/strncat/strncpy by those calls.
|
16 years ago |
|
util-strlcpyu.c
|
Add OpenBSD's strlcpy and strlcat and replace all strcat/strcpy/strncat/strncpy by those calls.
|
16 years ago |
|
util-threshold-config.c
|
clang fix - some minor fixes for unittests
|
15 years ago |
|
util-threshold-config.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-time.c
|
Switch time api from mutex to spinlock.
|
15 years ago |
|
util-time.h
|
Switch time api from mutex to spinlock.
|
15 years ago |
|
util-unittest-helper.c
|
Small layout update
|
15 years ago |
|
util-unittest-helper.h
|
Adding some flow improvements and recovery on emergency mode
|
15 years ago |
|
util-unittest.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
util-unittest.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-validate.h
|
Add missing util-validate.h
|
15 years ago |
|
util-var-name.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
util-var-name.h
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
util-var.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-var.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
win32-misc.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
win32-misc.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
win32-service.c
|
added possibility to run suricata as WIN32 service
|
15 years ago |
|
win32-service.h
|
added possibility to run suricata as WIN32 service
|
15 years ago |
|
win32-syslog.h
|
Added missing win32 files.
|
16 years ago |
