You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

Pierre Chifflier d476c654ee TLS: add detection for malicious heartbeats (AKA heartbleed) ... The OpenSSL implementation of RFC 6520 (Heartbeat extension) does not check the payload length correctly, resulting in a copy of at most 64k of memory from the server (ref: CVE-2014-0160). This patch adds support for decoding heartbeat messages (if not encrypted), and checking several parts (type, length and padding). When an anomaly is detected, a TLS event is raised.		11 years ago
..
Makefile.am	Make sure tls-events is part of the dist	11 years ago
decoder-events.rules	ipv4 decoder: set 'invalid' event on icmpv6	11 years ago
dns-events.rules	dns: fix message of decoder rule 2240008	11 years ago
files.rules	file handling: add example files.rules file	13 years ago
http-events.rules	http: add new events for invalid host header and host part of uri	12 years ago
smtp-events.rules	Add example smtp decoding events rules file.	13 years ago
stream-events.rules	classification: add category to some stream rules	11 years ago
tls-events.rules	TLS: add detection for malicious heartbeats (AKA heartbleed)	11 years ago