| .. |
|
Makefile.am
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
action-globals.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-debuglog.c
|
Fix app layer sigs being recognized as decoder event only or ip only.
|
15 years ago |
|
alert-debuglog.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-fastlog.c
|
Fix app layer sigs being recognized as decoder event only or ip only.
|
15 years ago |
|
alert-fastlog.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-prelude.c
|
Make pcap file mode read multiple packets per 'read'. Update threading model to deal with this.
|
15 years ago |
|
alert-prelude.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
alert-unified-alert.c
|
Make pcap file mode read multiple packets per 'read'. Update threading model to deal with this.
|
15 years ago |
|
alert-unified-alert.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-unified-log.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
alert-unified-log.h
|
GPL and Copyright header updates.
|
15 years ago |
|
alert-unified2-alert.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
alert-unified2-alert.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
app-layer-dcerpc-common.h
|
Fix dcerpc unittest, add comments.
|
15 years ago |
|
app-layer-dcerpc-udp.c
|
Better handle low memory conditions.
|
15 years ago |
|
app-layer-dcerpc-udp.h
|
Fix dcerpc unittest, add comments.
|
15 years ago |
|
app-layer-dcerpc.c
|
Better handle low memory conditions.
|
15 years ago |
|
app-layer-dcerpc.h
|
First stab at creating a stateful detection engine.
|
15 years ago |
|
app-layer-detect-proto.c
|
App layer proto specific sigs (use the app layer to match proto)
|
15 years ago |
|
app-layer-detect-proto.h
|
UDP support at AppLayer message handling
|
15 years ago |
|
app-layer-ftp.c
|
App layer proto specific sigs (use the app layer to match proto)
|
15 years ago |
|
app-layer-ftp.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
app-layer-htp.c
|
Fix tcp connections that are reset (RST packet) not always inspecting the reassembled stream. Update transaction id code to make sure both directions of a transaction are inspected before incrementing the inspect_id.
|
15 years ago |
|
app-layer-htp.h
|
First stab at creating a stateful detection engine.
|
15 years ago |
|
app-layer-nbss.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
app-layer-parser.c
|
Fix tcp connections that are reset (RST packet) not always inspecting the reassembled stream. Update transaction id code to make sure both directions of a transaction are inspected before incrementing the inspect_id.
|
15 years ago |
|
app-layer-parser.h
|
Fix tcp connections that are reset (RST packet) not always inspecting the reassembled stream. Update transaction id code to make sure both directions of a transaction are inspected before incrementing the inspect_id.
|
15 years ago |
|
app-layer-protos.h
|
dcerpc udp support
|
15 years ago |
|
app-layer-smb.c
|
Fix DCERPC over SMB/SMB2 detection issues. Fix not updating transaction id in a stream direction if there was no sgh.
|
15 years ago |
|
app-layer-smb.h
|
Fix DCERPC over SMB/SMB2 detection issues. Fix not updating transaction id in a stream direction if there was no sgh.
|
15 years ago |
|
app-layer-smb2.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
app-layer-smb2.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
app-layer-ssl.c
|
This patch for app-layer-ssl fix the bug #198 (SSLParserTest01). It seems that with -O2 and -O3, the compiler doesn't handle the initialization correctly (weird..)
|
15 years ago |
|
app-layer-ssl.h
|
support for sslv2/sslv3 their unit tests and better stream no reassembly flag handling
|
15 years ago |
|
app-layer-tls.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
app-layer-tls.h
|
support for sslv2/sslv3 their unit tests and better stream no reassembly flag handling
|
15 years ago |
|
app-layer.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
app-layer.h
|
UDP support at AppLayer message handling
|
15 years ago |
|
conf-yaml-loader.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
conf-yaml-loader.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
conf.c
|
Add support for retrieving float and double variables from the configuration.
|
15 years ago |
|
conf.h
|
Add support for retrieving float and double variables from the configuration.
|
15 years ago |
|
counters.c
|
Add a (disabled by default) flow pinned runmode for file pcap.
|
15 years ago |
|
counters.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
cuda-packet-batcher.c
|
add --list-cuda-cards option to list the cuda cards on the system. Add conf parameter to select the cuda device to use. Also change the threshhold limit to 2.4k packets to buffer
|
15 years ago |
|
cuda-packet-batcher.h
|
Improve configure messages. Make sure CUDA doesn't try to process packets that are too big.
|
15 years ago |
|
data-queue.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
data-queue.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
debug.h
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-ethernet.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-ethernet.h
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-events.h
|
Reduce size of event bit array in the packet structure.
|
15 years ago |
|
decode-gre.c
|
Better handle low memory conditions.
|
15 years ago |
|
decode-gre.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-icmpv4.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-icmpv4.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-icmpv6.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-icmpv6.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-ipv4.c
|
Better handle low memory conditions.
|
15 years ago |
|
decode-ipv4.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-ipv6.c
|
Fix thresholding issues.
|
15 years ago |
|
decode-ipv6.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-ppp.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-ppp.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-pppoe.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-pppoe.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-raw.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-raw.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-sll.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-sll.h
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-tcp.c
|
GPL and Copyright header updates.
|
15 years ago |
|
decode-tcp.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-udp.c
|
Applayer to flow fixes and cleanups.
|
15 years ago |
|
decode-udp.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
decode-vlan.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode-vlan.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
decode.c
|
Disable per second counters as they are unreliable.
|
15 years ago |
|
decode.h
|
Improve configure messages. Make sure CUDA doesn't try to process packets that are too big.
|
15 years ago |
|
defrag.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
defrag.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ack.c
|
More thoroughly cleanup a Packet when we recycle it. Fixes a corner case where we'd have a invalid tcp packet but p->proto would still say IPPROTO_TCP because of a previous run. Fixes bug #187.
|
15 years ago |
|
detect-ack.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-asn1.c
|
Fix valgrind ctx error on asn1 test 06
|
15 years ago |
|
detect-asn1.h
|
ASN1 decoder and keyword implementation
|
15 years ago |
|
detect-bytejump.c
|
fixes for dce_stub_data and content data sig parsing + more unittests
|
15 years ago |
|
detect-bytejump.h
|
dce stub content keywords support using dcepayload.c support for all dce related content keywords
|
15 years ago |
|
detect-bytetest.c
|
fixes for dce_stub_data and content data sig parsing + more unittests
|
15 years ago |
|
detect-bytetest.h
|
dce stub content keywords support using dcepayload.c support for all dce related content keywords
|
15 years ago |
|
detect-classtype.c
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
detect-classtype.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-content.c
|
fix signature parsing to how snort does it for content based keywords along with dce_stub_data
|
15 years ago |
|
detect-content.h
|
fixed a typo in the detect-content.h
|
15 years ago |
|
detect-csum.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-csum.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-dce-iface.c
|
Fix tcp connections that are reset (RST packet) not always inspecting the reassembled stream. Update transaction id code to make sure both directions of a transaction are inspected before incrementing the inspect_id.
|
15 years ago |
|
detect-dce-iface.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-dce-opnum.c
|
Fix tcp connections that are reset (RST packet) not always inspecting the reassembled stream. Update transaction id code to make sure both directions of a transaction are inspected before incrementing the inspect_id.
|
15 years ago |
|
detect-dce-opnum.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-dce-stub-data.c
|
Fix tcp connections that are reset (RST packet) not always inspecting the reassembled stream. Update transaction id code to make sure both directions of a transaction are inspected before incrementing the inspect_id.
|
15 years ago |
|
detect-dce-stub-data.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-decode-event.c
|
Make sure decoder event rules are inspected even if the packet is invalid and has no addesses or proto. Update fast log and alert debug log to display the alerts. Fixes #179.
|
15 years ago |
|
detect-decode-event.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-depth.c
|
fix signature parsing to how snort does it for content based keywords along with dce_stub_data
|
15 years ago |
|
detect-depth.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-detection-filter.c
|
Fix detection_filter issue.
|
15 years ago |
|
detect-detection-filter.h
|
Fix detection_filter issue.
|
15 years ago |
|
detect-distance.c
|
unittests for dce_stub_data content based singature parsing + fixes
|
15 years ago |
|
detect-distance.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-dsize.c
|
Make sure we inspect all outstanding reassembled stream chunks (smsg) if the stream is shutting down. Make sure to do inspect signatures that use dsize against the tcp packet payload, even if that payload was already added to the stream. Likewise, the dsize signatures are not inspected against the reassembled stream.
|
15 years ago |
|
detect-dsize.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-address-ipv4.c
|
Use Address structure in DetectAddress struct.
|
15 years ago |
|
detect-engine-address-ipv4.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-address-ipv6.c
|
Use Address structure in DetectAddress struct.
|
15 years ago |
|
detect-engine-address-ipv6.h
|
Use Address structure in DetectAddress struct.
|
15 years ago |
|
detect-engine-address.c
|
Make signature address matching more cache efficient.
|
15 years ago |
|
detect-engine-address.h
|
Make signature address matching more cache efficient.
|
15 years ago |
|
detect-engine-alert.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
detect-engine-alert.h
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
detect-engine-dcepayload.c
|
fixes for dce_stub_data and content data sig parsing + more unittests
|
15 years ago |
|
detect-engine-dcepayload.h
|
Move dce payload inspection to stateful detection engine.
|
15 years ago |
|
detect-engine-iponly.c
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
detect-engine-iponly.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-mpm.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
detect-engine-mpm.h
|
Don't scan TCP packet payload if it was added to the stream. Inspect the tcp stream with the correct packet. Should fix #184 and #185.
|
15 years ago |
|
detect-engine-payload.c
|
fixes the offset case for content matches + a case not handled by the prevous fix for multiple relative content matches. fix for payload.c dcepayload.c and uri.c
|
15 years ago |
|
detect-engine-payload.h
|
Inspect the reassembled stream together with the packet payload in the same direction.
|
15 years ago |
|
detect-engine-port.c
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
detect-engine-port.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-proto.c
|
Prefilter signatures before fully scanning them.
|
15 years ago |
|
detect-engine-proto.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-siggroup.c
|
Prefilter signatures before fully scanning them.
|
15 years ago |
|
detect-engine-siggroup.h
|
Prefilter signatures before fully scanning them.
|
15 years ago |
|
detect-engine-sigorder.c
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
detect-engine-sigorder.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-engine-state.c
|
Fix DCERPC over SMB/SMB2 detection issues. Fix not updating transaction id in a stream direction if there was no sgh.
|
15 years ago |
|
detect-engine-state.h
|
Fix for bug 186 and thresholding issue handling ip versions
|
15 years ago |
|
detect-engine-tag.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
detect-engine-tag.h
|
Adding tag keyword support
|
15 years ago |
|
detect-engine-threshold.c
|
Fix threshold handling ip addr
|
15 years ago |
|
detect-engine-threshold.h
|
Cleanup thresholding code.
|
15 years ago |
|
detect-engine-uri.c
|
Don't avoid inspecting uricontents if we get no match. It can be negated uricontents (and urilens/pcre..). But at least skip the search if we get no match
|
15 years ago |
|
detect-engine-uri.h
|
add pcre with U modifiers to the umatch sigmatch list. fix for bug 155
|
15 years ago |
|
detect-engine.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
detect-engine.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-fast-pattern.c
|
Load signatures with incompatible fast_pattern option (due to design differences for optimization)
|
15 years ago |
|
detect-fast-pattern.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flags.c
|
Clean up flags keyword.
|
15 years ago |
|
detect-flags.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flow.c
|
Improve detection of app layer, making sure we only handle app layer on 'established' packets. Should really fix #166.
|
15 years ago |
|
detect-flow.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flowbits.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
detect-flowbits.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flowint.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
detect-flowint.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-flowvar.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
detect-flowvar.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-fragbits.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
detect-fragbits.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-fragoffset.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-fragoffset.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ftpbounce.c
|
FLOW_DESTROY added to clean-up UT's that init flow
|
15 years ago |
|
detect-ftpbounce.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-gid.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-gid.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-client-body.c
|
Updating other http modifiers for sigs with fast_pattern option
|
15 years ago |
|
detect-http-client-body.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-cookie.c
|
Fixing unittests for fast_pattern options compatibility
|
15 years ago |
|
detect-http-cookie.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-header.c
|
Updating other http modifiers for sigs with fast_pattern option
|
15 years ago |
|
detect-http-header.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-method.c
|
Fixing unittests for fast_pattern options compatibility
|
15 years ago |
|
detect-http-method.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-http-uri.c
|
Updating other http modifiers for sigs with fast_pattern option
|
15 years ago |
|
detect-http-uri.h
|
Add support for http_uri keyword
|
15 years ago |
|
detect-icmp-id.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-icmp-id.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-icmp-seq.c
|
change LogInfo to LogDebug for icmp seq matches
|
15 years ago |
|
detect-icmp-seq.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-icode.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-icode.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-id.c
|
Null deref fix for detect-id.c
|
15 years ago |
|
detect-id.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ipopts.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-ipopts.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-ipproto.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-ipproto.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-isdataat.c
|
fixes for dce_stub_data and content data sig parsing + more unittests
|
15 years ago |
|
detect-isdataat.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-itype.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-itype.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-metadata.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-metadata.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-msg.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-msg.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-noalert.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-noalert.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-nocase.c
|
First stab at creating a stateful detection engine.
|
15 years ago |
|
detect-nocase.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-offset.c
|
fix signature parsing to how snort does it for content based keywords along with dce_stub_data
|
15 years ago |
|
detect-offset.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-parse.c
|
App layer proto specific sigs (use the app layer to match proto)
|
15 years ago |
|
detect-parse.h
|
fix signature parsing to how snort does it for content based keywords along with dce_stub_data
|
15 years ago |
|
detect-pcre.c
|
fix signature parsing to how snort does it for content based keywords along with dce_stub_data
|
15 years ago |
|
detect-pcre.h
|
unittests for dce_stub_data content based singature parsing + fixes
|
15 years ago |
|
detect-pktvar.c
|
GPL and Copyright header updates.
|
15 years ago |
|
detect-pktvar.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-priority.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-priority.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rawbytes.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rawbytes.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-recursive.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-recursive.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-reference.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-reference.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rev.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rev.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-rpc.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-rpc.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-sameip.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-sameip.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-seq.c
|
More thoroughly cleanup a Packet when we recycle it. Fixes a corner case where we'd have a invalid tcp packet but p->proto would still say IPPROTO_TCP because of a previous run. Fixes bug #187.
|
15 years ago |
|
detect-seq.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-sid.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-sid.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-stream_size.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-stream_size.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-tag.c
|
Tag engine improvements. Output tags only on unified format. Added atomic counter for tagged hosts/sessions
|
15 years ago |
|
detect-tag.h
|
Fixing flow cleanup and ctx initialization
|
15 years ago |
|
detect-threshold.c
|
Cleanup thresholding code.
|
15 years ago |
|
detect-threshold.h
|
Adding rate_filter support for threshold.config, multiline support and unittests
|
15 years ago |
|
detect-tls-version.c
|
Don't scan TCP packet payload if it was added to the stream. Inspect the tcp stream with the correct packet. Should fix #184 and #185.
|
15 years ago |
|
detect-tls-version.h
|
support for sslv2/sslv3 their unit tests and better stream no reassembly flag handling
|
15 years ago |
|
detect-ttl.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-ttl.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect-uricontent.c
|
Don't set negated uricontent signature flag twice.
|
15 years ago |
|
detect-uricontent.h
|
Improve stateful uri detection code.
|
15 years ago |
|
detect-urilen.c
|
Moving urilen inspection to detect-engine-uri. Adding unittests for pcre /U and urilen, in combination with uricontent
|
15 years ago |
|
detect-urilen.h
|
Moving urilen inspection to detect-engine-uri. Adding unittests for pcre /U and urilen, in combination with uricontent
|
15 years ago |
|
detect-window.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
detect-window.h
|
Moving alert logic to detect-engine-alert.c
|
15 years ago |
|
detect-within.c
|
unittests for dce_stub_data content based singature parsing + fixes
|
15 years ago |
|
detect-within.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
detect.c
|
Make signature address matching more cache efficient.
|
15 years ago |
|
detect.h
|
Make signature address matching more cache efficient.
|
15 years ago |
|
flow-alert-sid.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
flow-alert-sid.h
|
GPL and Copyright header updates.
|
15 years ago |
|
flow-bit.c
|
Cleanup thresholding code.
|
15 years ago |
|
flow-bit.h
|
GPL and Copyright header updates.
|
15 years ago |
|
flow-hash.c
|
Fix segv conditions caused by broken flow cleanup code.
|
15 years ago |
|
flow-hash.h
|
GPL and Copyright header updates.
|
15 years ago |
|
flow-private.h
|
Switch flow memuse counter to the atomic api.
|
15 years ago |
|
flow-queue.c
|
Adding some flow improvements and recovery on emergency mode
|
15 years ago |
|
flow-queue.h
|
Adding some flow improvements and recovery on emergency mode
|
15 years ago |
|
flow-util.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
flow-util.h
|
Fix segv conditions caused by broken flow cleanup code.
|
15 years ago |
|
flow-var.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
flow-var.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
flow.c
|
seems to be a race between FlowTestPrune and FLOW_DESTROY in FlowTest0* comment out the later for now
|
15 years ago |
|
flow.h
|
Fix for bug 186 and thresholding issue handling ip versions
|
15 years ago |
|
host.c
|
fixed the typo in byte_jump and host.c, Thanks to rmkml for pointing out
|
15 years ago |
|
host.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
log-httplog.c
|
Fix HTTP HEAD detection code.
|
15 years ago |
|
log-httplog.h
|
GPL and Copyright header updates.
|
15 years ago |
|
output.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
output.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
packet-queue.c
|
Attempt to work around NULL packets we're seeing ending up in queues when the compiler has optimized our code.
|
15 years ago |
|
packet-queue.h
|
GPL and Copyright header updates.
|
15 years ago |
|
pkt-var.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
pkt-var.h
|
GPL and Copyright header updates.
|
15 years ago |
|
queue.h
|
Code is now compilable on the Win32 platform
|
16 years ago |
|
reputation.c
|
Fix compiler warning about incomplete prototype (2).
|
15 years ago |
|
reputation.h
|
Fix compiler warning about incomplete prototype (2).
|
15 years ago |
|
respond-reject-libnet11.c
|
GPL and Copyright header updates.
|
15 years ago |
|
respond-reject-libnet11.h
|
GPL and Copyright header updates.
|
15 years ago |
|
respond-reject.c
|
Make pcap file mode read multiple packets per 'read'. Update threading model to deal with this.
|
15 years ago |
|
respond-reject.h
|
Make pcap file mode read multiple packets per 'read'. Update threading model to deal with this.
|
15 years ago |
|
runmodes.c
|
Remove leftover printf.
|
15 years ago |
|
runmodes.h
|
Add a (disabled by default) flow pinned runmode for file pcap.
|
15 years ago |
|
source-erf-dag.c
|
o Changed SCMalloc to DecodeThreadVarsAlloc in Decode thread initialization. (Ish) o Changed htons to noths. (Ish) o Added support for handling DAG cards running DSM modules and other non-standard ETH ERF types. o Added support for allowing gracefull restarts of the fetch thread if it fails to read an ERF properly.
|
15 years ago |
|
source-erf-dag.h
|
Add initial support for reading packets from a DAG card, we only support reading from a single stream at this time.
|
15 years ago |
|
source-erf-file.c
|
UDP support at AppLayer message handling
|
15 years ago |
|
source-erf-file.h
|
Support for reading ERF files.
|
15 years ago |
|
source-ipfw.c
|
PacketQueue postp added to TmEcodes for ipfw and pf_ring to silence compiler warnings
|
15 years ago |
|
source-ipfw.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
source-nfq-prototypes.h
|
GPL and Copyright header updates.
|
15 years ago |
|
source-nfq.c
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
source-nfq.h
|
GPL and Copyright header updates.
|
15 years ago |
|
source-pcap-file.c
|
In case of error in pcap file reading mode, we shut the engine down hard instead of gracefully.
|
15 years ago |
|
source-pcap-file.h
|
GPL and Copyright header updates.
|
15 years ago |
|
source-pcap.c
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
source-pcap.h
|
GPL and Copyright header updates.
|
15 years ago |
|
source-pfring.c
|
PacketQueue postp added to TmEcodes for ipfw and pf_ring to silence compiler warnings
|
15 years ago |
|
source-pfring.h
|
GPL and Copyright header updates.
|
15 years ago |
|
stream-tcp-private.h
|
UDP support at AppLayer message handling
|
15 years ago |
|
stream-tcp-reassemble.c
|
Force stream reassembly on streams where we didn't yet detect the protocol if the stream is closing.
|
15 years ago |
|
stream-tcp-reassemble.h
|
dce stub content keywords support using dcepayload.c support for all dce related content keywords
|
15 years ago |
|
stream-tcp.c
|
support for seperate memcaps for reassembly and stream engine
|
15 years ago |
|
stream-tcp.h
|
support for seperate memcaps for reassembly and stream engine
|
15 years ago |
|
stream.c
|
Don't scan TCP packet payload if it was added to the stream. Inspect the tcp stream with the correct packet. Should fix #184 and #185.
|
15 years ago |
|
stream.h
|
Don't scan TCP packet payload if it was added to the stream. Inspect the tcp stream with the correct packet. Should fix #184 and #185.
|
15 years ago |
|
suricata-common.h
|
dce stub content keywords support using dcepayload.c support for all dce related content keywords
|
15 years ago |
|
suricata.c
|
add --list-cuda-cards option to list the cuda cards on the system. Add conf parameter to select the cuda device to use. Also change the threshhold limit to 2.4k packets to buffer
|
15 years ago |
|
suricata.h
|
Bump version to 1.0.0
|
15 years ago |
|
threads.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
threads.h
|
Fix SCondWait -> SCCondWait typo.
|
15 years ago |
|
threadvars.h
|
allow counters clubbing for detect TM
|
15 years ago |
|
tm-modules.c
|
GPL and Copyright header updates.
|
15 years ago |
|
tm-modules.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tm-queuehandlers.c
|
Lockfree ringbuffer wip.
|
15 years ago |
|
tm-queuehandlers.h
|
Split ringbuffer queue handler into multiple, for mrsw, srsw, srmw modes.
|
15 years ago |
|
tm-queues.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tm-queues.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tm-threads.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tm-threads.h
|
Fix cuda compilation.
|
15 years ago |
|
tmqh-flow.c
|
Fix SCondWait -> SCCondWait typo.
|
15 years ago |
|
tmqh-flow.h
|
GPL and Copyright header updates.
|
15 years ago |
|
tmqh-nfq.c
|
GPL and Copyright header updates.
|
15 years ago |
|
tmqh-nfq.h
|
GPL and Copyright header updates.
|
15 years ago |
|
tmqh-packetpool.c
|
Fix a data race for packet pool packets when defrag/tunnel code needs a packet.
|
15 years ago |
|
tmqh-packetpool.h
|
Move packet pool to ringbuffer, update packet pool api and ringbuffer api. Remove memset usage from PACKET_RECYCLE, add proper cleanup macros.
|
15 years ago |
|
tmqh-ringbuffer.c
|
In the ringbuffers spin before the wait
|
15 years ago |
|
tmqh-ringbuffer.h
|
Lockfree ringbuffer wip.
|
15 years ago |
|
tmqh-simple.c
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
tmqh-simple.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
util-action.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-action.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-atomic.h
|
Atomic macro's typo fix.
|
15 years ago |
|
util-binsearch.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-binsearch.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-bloomfilter-counting.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-bloomfilter-counting.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-bloomfilter.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-bloomfilter.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-byte.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-byte.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-cidr.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-cidr.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-classification-config.c
|
Add support for class id in classification code. Submitted by firnsy@securixlive.com, thanks.
|
15 years ago |
|
util-classification-config.h
|
Add support for class id in classification code. Submitted by firnsy@securixlive.com, thanks.
|
15 years ago |
|
util-clock.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-cpu.c
|
Basic rule profiling even though the results may be skewed by a bad rule in a grouping of rules.
|
15 years ago |
|
util-cpu.h
|
Basic rule profiling even though the results may be skewed by a bad rule in a grouping of rules.
|
15 years ago |
|
util-cuda-handlers.c
|
add --list-cuda-cards option to list the cuda cards on the system. Add conf parameter to select the cuda device to use. Also change the threshhold limit to 2.4k packets to buffer
|
15 years ago |
|
util-cuda-handlers.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
util-cuda.c
|
add --list-cuda-cards option to list the cuda cards on the system. Add conf parameter to select the cuda device to use. Also change the threshhold limit to 2.4k packets to buffer
|
15 years ago |
|
util-cuda.h
|
add --list-cuda-cards option to list the cuda cards on the system. Add conf parameter to select the cuda device to use. Also change the threshhold limit to 2.4k packets to buffer
|
15 years ago |
|
util-daemon.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-daemon.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-debug-filters.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
util-debug-filters.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-debug.c
|
Better handle low memory conditions.
|
15 years ago |
|
util-debug.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-decode-asn1.c
|
Rename asn1 files, fix an invalid free, fix improper init of vars in one unittest.
|
15 years ago |
|
util-decode-asn1.h
|
Rename asn1 files, fix an invalid free, fix improper init of vars in one unittest.
|
15 years ago |
|
util-enum.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-enum.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-error.c
|
Load signatures with incompatible fast_pattern option (due to design differences for optimization)
|
15 years ago |
|
util-error.h
|
Improve out of memory handling during initialization.
|
15 years ago |
|
util-fix_checksum.c
|
Break out checksum fixup code to make the license separation more clear.
|
16 years ago |
|
util-fix_checksum.h
|
Break out checksum fixup code to make the license separation more clear.
|
16 years ago |
|
util-fmemopen.c
|
Adding rate_filter support for threshold.config, multiline support and unittests
|
15 years ago |
|
util-fmemopen.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-hash.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-hash.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-hashlist.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-hashlist.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-host-os-info.c
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
util-host-os-info.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-mem.h
|
Better handle low memory conditions.
|
15 years ago |
|
util-mpm-b2g-cuda-kernel.cu
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
util-mpm-b2g-cuda.c
|
Fix cuda compilation.
|
15 years ago |
|
util-mpm-b2g-cuda.h
|
batching of packets support for cuda b2g mpm. Supported for both 32 and 64 bit platforms
|
15 years ago |
|
util-mpm-b2g.c
|
Improve out of memory handling during initialization.
|
15 years ago |
|
util-mpm-b2g.h
|
Improve B2g performance by merging pattern array and hash.
|
15 years ago |
|
util-mpm-b3g.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-mpm-b3g.h
|
Complete conversion of pattern id mpm storage vs sig id storage.
|
15 years ago |
|
util-mpm-wumanber.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-mpm-wumanber.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-mpm.c
|
Fixes to stream pattern matching.
|
15 years ago |
|
util-mpm.h
|
Improve B2g performance by merging pattern array and hash.
|
15 years ago |
|
util-pidfile.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-pidfile.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-pool.c
|
GPL and Copyright header updates.
|
15 years ago |
|
util-pool.h
|
GPL and Copyright header updates.
|
15 years ago |
|
util-print.c
|
Make sure decoder event rules are inspected even if the packet is invalid and has no addesses or proto. Update fast log and alert debug log to display the alerts. Fixes #179.
|
15 years ago |
|
util-print.h
|
Make sure decoder event rules are inspected even if the packet is invalid and has no addesses or proto. Update fast log and alert debug log to display the alerts. Fixes #179.
|
15 years ago |
|
util-privs.c
|
set proper caps based run_mode
|
15 years ago |
|
util-privs.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-profiling.c
|
Cleanup thresholding code.
|
15 years ago |
|
util-profiling.h
|
add profiling to stateful detection engine + other fixups.
|
15 years ago |
|
util-radix-tree.c
|
Avoid mem allocations while searching on radix trees (temporal prefix)
|
15 years ago |
|
util-radix-tree.h
|
Fix radix and stateful detect engine memory leaks.
|
15 years ago |
|
util-random.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-random.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-ringbuffer.c
|
Add unittests for ringbuffer.
|
15 years ago |
|
util-ringbuffer.h
|
Add unittests for ringbuffer.
|
15 years ago |
|
util-rule-vars.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
util-rule-vars.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm-bm.c
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
util-spm-bm.h
|
memroy leaks fixes in detection module, app layer and counters
|
15 years ago |
|
util-spm-bs.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm-bs.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm-bs2bm.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm-bs2bm.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-spm.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
util-spm.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-strlcatu.c
|
Add OpenBSD's strlcpy and strlcat and replace all strcat/strcpy/strncat/strncpy by those calls.
|
16 years ago |
|
util-strlcpyu.c
|
Add OpenBSD's strlcpy and strlcat and replace all strcat/strcpy/strncat/strncpy by those calls.
|
16 years ago |
|
util-threshold-config.c
|
Move rate_filter rule tracking data from Signature to Threshold context
|
15 years ago |
|
util-threshold-config.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-time.c
|
Switch time api from mutex to spinlock.
|
15 years ago |
|
util-time.h
|
Switch time api from mutex to spinlock.
|
15 years ago |
|
util-unittest-helper.c
|
Adding tag keyword support
|
15 years ago |
|
util-unittest-helper.h
|
Adding some flow improvements and recovery on emergency mode
|
15 years ago |
|
util-unittest.c
|
Fix inconsistent use of dynamic memory allocation
|
15 years ago |
|
util-unittest.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-validate.h
|
Add missing util-validate.h
|
15 years ago |
|
util-var-name.c
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
util-var-name.h
|
flowbits, flowvars, pktvars, flow flags and app layer info added to alert-debug.log
|
15 years ago |
|
util-var.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
util-var.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
win32-misc.c
|
Import of GPLv2 Header 050410
|
15 years ago |
|
win32-misc.h
|
Import of GPLv2 Header 050410
|
15 years ago |
|
win32-service.c
|
added possibility to run suricata as WIN32 service
|
15 years ago |
|
win32-service.h
|
added possibility to run suricata as WIN32 service
|
15 years ago |
|
win32-syslog.h
|
Added missing win32 files.
|
16 years ago |
