suricata
suricata copied to clipboard
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
Ticket: #2886 Make sure these boxes are signed before submitting your Pull Request -- thank you. - [x] I have read the contributing guide lines at https://docs.suricata.io/en/latest/devguide/contributing/contribution-process.html - [x] I...
- [X] I have read the contributing guide lines at https://docs.suricata.io/en/latest/devguide/contributing/contribution-process.html - [X] I have signed the Open Information Security Foundation contribution agreement at https://suricata.io/about/contribution-agreement/ (note: this is only required...
Link to ticket: https://redmine.openinfosecfoundation.org/issues/ https://redmine.openinfosecfoundation.org/issues/7089 Describe changes: - some optimizations for tx iterations #11258 with bigger commit message and dedicated ticker number
- [x] I have read the contributing guide lines at https://docs.suricata.io/en/latest/devguide/contributing/contribution-process.html - [x] I have signed the Open Information Security Foundation contribution agreement at https://suricata.io/about/contribution-agreement/ (note: this is only required...
When the option to set a full path is enabled and a full path is provided, skip adding the prefix (based on localstatedir) to the directory since it would be...
Continuation of #11277 Issue: 6954 This commit adds the linktype name to the output stream. The name is determined from the pcap utility function pcap_datalink_val_to_name Link to ticket: https://redmine.openinfosecfoundation.org/issues/6954 Describe...
WIP branch for merging decoders into capture methods. https://redmine.openinfosecfoundation.org/issues/6968 Implements it for: - pcap-file - pcap - af-packet That should show if the approach makes sense and if CI/QA pass.
- [X] I have read the contributing guide lines at https://docs.suricata.io/en/latest/devguide/contributing/contribution-process.html - [X] I have signed the Open Information Security Foundation contribution agreement at https://suricata.io/about/contribution-agreement/ (note: this is only required...
Don't set an ACK value if ACK flag is no longer set. This avoids a bogus `pkt_broken_ack` event set. Fixes: ebf465a11bff ("tcp: do not assign TCP flags to pseudopackets")
Previous PR: #11194 Changes to previous PR: * Handle splitting at all byte boundaries in a UTF-8 string in a way that avoids panics. Rust already has a function to...