mirror of https://github.com/OISF/suricata
You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
ec77632e84
Enables IPS functionality on Windows using the open-source (LGPLv3/GPLv2) WinDivert driver and API. From https://www.reqrypt.org/windivert-doc.html : "WinDivert is a user-mode capture/sniffing/modification/blocking/re-injection package for Windows Vista, Windows Server 2008, Windows 7, and Windows 8. WinDivert can be used to implement user-mode packet filters, packet sniffers, firewalls, NAT, VPNs, tunneling applications, etc., without the need to write kernel-mode code." - adds `--windivert [filter string]` and `--windivert-forward [filter string]` command-line options to enable WinDivert IPS mode. `--windivert[-forward] true` will open a filter for all traffic. See https://www.reqrypt.org/windivert-doc.html#filter_language for more information. Limitation: currently limited to `autofp` runmode. Additionally: - `tmm_modules` now zeroed during `RegisterAllModules` - fixed Windows Vista+ `inet_ntop` call in `PrintInet` - fixed `GetRandom` bug (nonexistent keys) on fresh Windows installs - fixed `RandomGetClock` building on Windows builds - Added WMI queries for MTU |
7 years ago | |
|---|---|---|
| .. | ||
| doxygen | ||
| userguide | 7 years ago | |
| AUTHORS | ||
| Basic_Setup.txt | ||
| GITGUIDE | ||
| INSTALL | ||
| INSTALL.PF_RING | ||
| INSTALL.WINDOWS | ||
| Makefile.am | ||
| NEWS | ||
| README | ||
| Setting_up_IPSinline_for_Linux.txt | ||
| TODO | ||
| Third_Party_Installation_Guides.txt | ||