aiden
/
suricata
mirror of https://github.com/OISF/suricata
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
main-7.0.x
dependabot/github_actions/github/codeql-action-3.29.5
master
master-6.0.x
master-5.0.x
master-4.1.x
master-4.0.x
master-3.2.x
suricata-8.0.0
suricata-7.0.11
suricata-8.0.0-rc1
suricata-8.0.0-beta1
suricata-7.0.10
suricata-7.0.9
suricata-7.0.8
suricata-7.0.7
suricata-7.0.6
suricata-6.0.20
suricata-7.0.5
suricata-6.0.19
suricata-6.0.18
suricata-7.0.4
suricata-6.0.17
suricata-7.0.3
suricata-6.0.16
suricata-7.0.2
suricata-6.0.15
suricata-7.0.1
suricata-6.0.14
suricata-7.0.0
suricata-7.0.0-rc2
suricata-6.0.13
suricata-6.0.12
suricata-6.0.11
suricata-7.0.0-rc1
suricata-6.0.10
suricata-6.0.9
suricata-7.0.0-beta1
suricata-6.0.8
suricata-6.0.7
suricata-6.0.6
suricata-5.0.10
suricata-6.0.5
suricata-5.0.9
suricata-6.0.4
suricata-5.0.8
suricata-6.0.3
suricata-5.0.7
suricata-6.0.2
suricata-5.0.6
suricata-6.0.1
suricata-5.0.5
suricata-4.1.10
suricata-4.1.9
suricata-5.0.4
suricata-6.0.0
suricata-6.0.0-rc1
suricata-6.0.0-beta1
suricata-5.0.3
suricata-4.1.8
suricata-4.1.7
suricata-5.0.2
suricata-4.1.6
suricata-5.0.1
suricata-5.0.0
suricata-5.0.0-rc1
suricata-4.1.5
suricata-5.0.0-beta1
suricata-4.1.4
suricata-4.1.3
suricata-4.0.7
suricata-4.1.2
suricata-4.1.1
suricata-4.1.0
suricata-4.0.6
suricata-4.1.0-rc2
suricata-4.1.0-rc1
suricata-4.0.5
suricata-4.1.0-beta1
suricata-4.0.4
suricata-4.0.3
suricata-4.0.2
suricata-3.2.5
suricata-4.0.1
suricata-3.2.4
suricata-4.0.0
suricata-4.0.0-rc2
suricata-3.2.3
suricata-4.0.0-rc1
suricata-4.0.0-beta1
suricata-3.2.2
suricata-3.1.4
suricata-3.2.1
suricata-3.2
suricata-3.2RC1
suricata-3.1.3
suricata-3.2beta1
suricata-3.1.2
suricata-3.1.1
suricata-3.1
suricata-3.0.2
suricata-3.1RC1
suricata-3.0.1
suricata-3.0.1RC1
suricata-3.0
suricata-2.0.11
suricata-3.0RC3
suricata-3.0RC2
suricata-3.0RC1
suricata-2.0.10
suricata-2.0.9
suricata-2.1beta4
suricata-2.0.8
suricata-2.0.7
suricata-2.1beta3
suricata-2.0.6
suricata-2.0.5
suricata-2.1beta2
suricata-2.0.4
suricata-2.1beta1
suricata-2.0.3
suricata-2.0.2
suricata-2.0.1
suricata-2.0.1rc1
suricata-2.0
suricata-2.0rc3
suricata-2.0rc2
suricata-2.0rc1
suricata-2.0beta2
suricata-1.4.7
suricata-1.4.6
suricata-1.4.5
suricata-2.0beta1
suricata-1.4.4
suricata-1.4.3
suricata-1.4.2
suricata-1.4.1
suricata-1.3.6
suricata-1.4
suricata-1.3.5
suricata-1.4rc1
suricata-1.3.4
suricata-1.4beta3
suricata-1.3.3
suricata-1.4beta2
suricata-1.3.2
suricata-1.4beta1
suricata-1.3.1
suricata-1.3
suricata-1.3rc1
suricata-1.3beta2
suricata-1.3beta1
suricata-1.2.1
suricata-1.2
suricata-1.2rc1
suricata-1.2beta1
suricata-1.1.1
suricata-0.8.2
suricata-1.0.0
suricata-1.0.1
suricata-1.0.2
suricata-1.0.3
suricata-1.0.4
suricata-1.0.5
suricata-1.1
suricata-1.1beta1
suricata-1.1beta2
suricata-1.1beta3
suricata-1.1rc1
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'suricata-7.0.7'
${ noResults }
suricata/src
History
Ilya Bakhtin f8f65de937 detect: pseudo-packets inherit inspect flags from parent packet 
Instead of inheriting from flow, because encrypted protocols like TLS
and SSH may have just set the flow flags to indicate rest of stream is
encrypted and does not need to run stream inspection. But inspection
still needs to be run detection on this last flushing packet.

Ticket: #7235.
(cherry picked from commit 976dec7f33)
 		10 months ago
..
tests fuzz: make confyaml.c an explicit source 1 year ago
Makefile.am fuzz: make confyaml.c an explicit source 1 year ago
action-globals.h
alert-debuglog.c
alert-debuglog.h
alert-fastlog.c
alert-fastlog.h
alert-syslog.c
alert-syslog.h
app-layer-detect-proto.c fuzz: enable by default all protocols 2 years ago
app-layer-detect-proto.h
app-layer-dnp3-objects.c
app-layer-dnp3-objects.h
app-layer-dnp3.c misc: improve code documentation 2 years ago
app-layer-dnp3.h misc: improve code documentation 2 years ago
app-layer-enip-common.c
app-layer-enip-common.h
app-layer-enip.c
app-layer-enip.h
app-layer-events.c
app-layer-events.h
app-layer-expectation.c
app-layer-expectation.h
app-layer-frames.c
app-layer-frames.h frames: do not only rely on FRAME_STREAM_ID 11 months ago
app-layer-ftp.c filestore: do not try to store a file set to nostore 1 year ago
app-layer-ftp.h
app-layer-htp-body.c
app-layer-htp-body.h
app-layer-htp-file.c http1: remove transactions from their list 2 years ago
app-layer-htp-file.h
app-layer-htp-libhtp.c misc: improve code documentation 2 years ago
app-layer-htp-libhtp.h misc: improve code documentation 2 years ago
app-layer-htp-mem.c app-layer: Set sc_errno upon error return 1 year ago
app-layer-htp-mem.h misc: improve code documentation 2 years ago
app-layer-htp-range.c util/hash: use randomized hash algorithm 10 months ago
app-layer-htp-range.h
app-layer-htp-xff.c
app-layer-htp-xff.h
app-layer-htp.c http: have a headers limit 10 months ago
app-layer-htp.h http: have a headers limit 10 months ago
app-layer-http2.c
app-layer-http2.h
app-layer-ike.c
app-layer-ike.h
app-layer-krb5.c
app-layer-krb5.h
app-layer-modbus.c
app-layer-modbus.h
app-layer-mqtt.c
app-layer-mqtt.h
app-layer-nfs-tcp.c
app-layer-nfs-tcp.h
app-layer-nfs-udp.c
app-layer-nfs-udp.h
app-layer-ntp.c
app-layer-ntp.h
app-layer-parser.c pgsql: use new API style for extern C functions 11 months ago
app-layer-parser.h
app-layer-protos.c
app-layer-protos.h
app-layer-quic.c
app-layer-quic.h
app-layer-rdp.c
app-layer-rdp.h
app-layer-register.c
app-layer-register.h
app-layer-rfb.c
app-layer-rfb.h
app-layer-sip.c
app-layer-sip.h
app-layer-smb.c misc: improve code documentation 2 years ago
app-layer-smb.h misc: improve code documentation 2 years ago
app-layer-smtp.c filestore: do not try to store a file set to nostore 1 year ago
app-layer-smtp.h smtp: avoid creating empty transaction 2 years ago
app-layer-snmp.c
app-layer-snmp.h
app-layer-ssh.c
app-layer-ssh.h
app-layer-ssl.c ssl/ja3: better check for ja3 being enabled 11 months ago
app-layer-ssl.h ja4: implement for TLS and QUIC 1 year ago
app-layer-tftp.c
app-layer-tftp.h
app-layer.c stats: incr app-proto flow counter for detection-only 2 years ago
app-layer.h misc: improve code documentation 2 years ago
conf-yaml-loader.c conf: avoid quadratic complexity 1 year ago
conf-yaml-loader.h
conf.c conf: check if node value is Null 2 years ago
conf.h
counters.c output/stats: Handle stat names w/out scope 2 years ago
counters.h output/stats: Handle stat names w/out scope 2 years ago
datasets-ipv4.c util/hash: use randomized hash algorithm 10 months ago
datasets-ipv4.h util/hash: use randomized hash algorithm 10 months ago
datasets-ipv6.c util/hash: use randomized hash algorithm 10 months ago
datasets-ipv6.h util/hash: use randomized hash algorithm 10 months ago
datasets-md5.c util/hash: use randomized hash algorithm 10 months ago
datasets-md5.h util/hash: use randomized hash algorithm 10 months ago
datasets-reputation.h
datasets-sha256.c util/hash: use randomized hash algorithm 10 months ago
datasets-sha256.h util/hash: use randomized hash algorithm 10 months ago
datasets-string.c util/hash: use randomized hash algorithm 10 months ago
datasets-string.h util/hash: use randomized hash algorithm 10 months ago
datasets.c detect/datasets: implement unset command 10 months ago
datasets.h detect/datasets: implement unset command 10 months ago
decode-chdlc.c
decode-chdlc.h
decode-erspan.c
decode-erspan.h
decode-esp.c
decode-esp.h
decode-ethernet.c
decode-ethernet.h
decode-events.c stream: add stream.rst_with_data event for RST with data 2 years ago
decode-events.h stream: add stream.rst_with_data event for RST with data 2 years ago
decode-geneve.c
decode-geneve.h
decode-gre.c
decode-gre.h
decode-icmpv4.c
decode-icmpv4.h
decode-icmpv6.c
decode-icmpv6.h
decode-ipv4.c decode/ppp: remove ppph check in favor of flag 1 year ago
decode-ipv4.h detect/ipopts: Handle multiple ip options 1 year ago
decode-ipv6.c decode-ipv6: Set L4 proto on ipv6 incase of GRE decode error 2 years ago
decode-ipv6.h
decode-mpls.c
decode-mpls.h
decode-nsh.c
decode-nsh.h
decode-null.c
decode-ppp.c decode/ppp: fix iplen check int handling 1 year ago
decode-ppp.h decode/ppp: add missing types definitions 1 year ago
decode-pppoe.c decode/pppoe: skip useless loop unless debug 1 year ago
decode-pppoe.h
decode-raw.c
decode-raw.h
decode-sctp.c
decode-sctp.h
decode-sll.c
decode-sll.h
decode-tcp.c
decode-tcp.h
decode-template.c
decode-template.h
decode-teredo.c
decode-teredo.h
decode-udp.c
decode-udp.h
decode-vlan.c
decode-vlan.h
decode-vntag.c
decode-vntag.h
decode-vxlan.c
decode-vxlan.h
decode.c defrag: fix wrong datalink being logged 1 year ago
decode.h decode/ppp: clean up ppph pointer use 1 year ago
defrag-config.c radix: Detect duplicate netblocks 2 years ago
defrag-config.h
defrag-hash.c defrag: don't use completed tracker 1 year ago
defrag-hash.h
defrag-queue.c
defrag-queue.h
defrag-timeout.c
defrag-timeout.h
defrag.c defrag: fix off by one 10 months ago
defrag.h defrag: fix wrong datalink being logged 1 year ago
detect-app-layer-event.c
detect-app-layer-event.h
detect-app-layer-protocol.c detect/app-layer-proto: fix prefilter check 11 months ago
detect-app-layer-protocol.h
detect-asn1.c
detect-asn1.h
detect-base64-data.c
detect-base64-data.h
detect-base64-decode.c detect/pcre: Use local match variables 2 years ago
detect-base64-decode.h
detect-bsize.c detect/integers: harmonize parser return handling 1 year ago
detect-bsize.h
detect-bypass.c
detect-bypass.h
detect-byte-extract.c detect/bytejump: don't reuse content flag 2 years ago
detect-byte-extract.h
detect-byte.c
detect-byte.h
detect-bytejump.c detect/bytejump: don't reuse content flag 2 years ago
detect-bytejump.h detect/bytejump: don't reuse content flag 2 years ago
detect-bytemath.c
detect-bytemath.h
detect-bytetest.c detect/bytetest: convert unittests to FAIL/PASS 2 years ago
detect-bytetest.h
detect-cipservice.c
detect-cipservice.h
detect-classtype.c detect/pcre: Use local match variables 2 years ago
detect-classtype.h
detect-config.c detect/pcre: Use local match variables 2 years ago
detect-config.h
detect-content.c detect/content: fix offset for negative distance 2 years ago
detect-content.h detect/content: cleanup nocase conversion 2 years ago
detect-csum.c
detect-csum.h
detect-datarep.c
detect-datarep.h
detect-dataset.c detect/dataset: abort only in debug mode 10 months ago
detect-dataset.h datasets: restrict scope of macro/enum 10 months ago
detect-dce-iface.c
detect-dce-iface.h
detect-dce-opnum.c
detect-dce-opnum.h
detect-dce-stub-data.c
detect-dce-stub-data.h
detect-depth.c
detect-depth.h
detect-detection-filter.c detect/pcre: Use local match variables 2 years ago
detect-detection-filter.h
detect-dhcp-leasetime.c
detect-dhcp-leasetime.h
detect-dhcp-rebinding-time.c
detect-dhcp-rebinding-time.h
detect-dhcp-renewal-time.c
detect-dhcp-renewal-time.h
detect-distance.c
detect-distance.h
detect-dnp3.c
detect-dnp3.h
detect-dns-opcode.c
detect-dns-opcode.h
detect-dns-query.c
detect-dns-query.h
detect-dsize.c detect/integers: harmonize parser return handling 1 year ago
detect-dsize.h
detect-engine-address-ipv4.c
detect-engine-address-ipv4.h
detect-engine-address-ipv6.c
detect-engine-address-ipv6.h
detect-engine-address.c detect/address: avoid cppcheck false positive 1 year ago
detect-engine-address.h
detect-engine-alert.c detect: implement 'alert' keyword as a companion to 'noalert' 1 year ago
detect-engine-alert.h
detect-engine-analyzer.c detect: set ACTION_ALERT for rules that should alert 1 year ago
detect-engine-analyzer.h detect/analysis: Move globals to engine ctx 2 years ago
detect-engine-build.c detect: add to signature mask for decode events 1 year ago
detect-engine-build.h
detect-engine-content-inspection.c detect/bytejump: don't reuse content flag 2 years ago
detect-engine-content-inspection.h
detect-engine-dcepayload.c
detect-engine-dcepayload.h
detect-engine-enip.c
detect-engine-enip.h
detect-engine-event.c detect/pcre: Use local match variables 2 years ago
detect-engine-event.h
detect-engine-file.c detect/file: Remove centralized proto definition 2 years ago
detect-engine-file.h detect/file: Remove centralized proto definition 2 years ago
detect-engine-frame.c
detect-engine-frame.h
detect-engine-iponly.c detect-engine-iponly: improve ip list performance 1 year ago
detect-engine-iponly.h
detect-engine-loader.c multi-tenant: fix loader dead lock 1 year ago
detect-engine-loader.h multi-tenant: fix loader dead lock 1 year ago
detect-engine-mpm.c detect/mpm: don't test for impossible condition 1 year ago
detect-engine-mpm.h mpm: Use typedef for mpm registration 2 years ago
detect-engine-payload.c
detect-engine-payload.h
detect-engine-port.c detect/port: remove SigGroupHead* ops 1 year ago
detect-engine-port.h util/interval-tree: add utility fns 1 year ago
detect-engine-prefilter-common.c
detect-engine-prefilter-common.h
detect-engine-prefilter.c
detect-engine-prefilter.h
detect-engine-profile.c
detect-engine-profile.h
detect-engine-proto.c
detect-engine-proto.h
detect-engine-register.c ja4: implement for TLS and QUIC 1 year ago
detect-engine-register.h detect: implement 'alert' keyword as a companion to 'noalert' 1 year ago
detect-engine-siggroup.c detect: optimize sig_cnt setting 1 year ago
detect-engine-siggroup.h detect/port: merge port ranges for same signatures 1 year ago
detect-engine-sigorder.c
detect-engine-sigorder.h
detect-engine-state.c
detect-engine-state.h
detect-engine-tag.c
detect-engine-tag.h
detect-engine-threshold.c
detect-engine-threshold.h
detect-engine-uint.c
detect-engine-uint.h
detect-engine.c requires: add requires keyword 2 years ago
detect-engine.h multi-tenant: add reload-tenants command 2 years ago
detect-fast-pattern.c base64_data: inform of use w fast_pattern 1 year ago
detect-fast-pattern.h
detect-file-data.c doc: update file.data keyword documentation 2 years ago
detect-file-data.h
detect-file-hash-common.c
detect-file-hash-common.h
detect-filemagic.c detect/file: use util to turn keyword to nocase 2 years ago
detect-filemagic.h
detect-filemd5.c
detect-filemd5.h
detect-filename.c detect/file: use util to turn keyword to nocase 2 years ago
detect-filename.h
detect-filesha1.c
detect-filesha1.h
detect-filesha256.c
detect-filesha256.h
detect-filesize.c detect/integers: harmonize parser return handling 1 year ago
detect-filesize.h
detect-filestore.c detect: respect directionality for filestore 1 year ago
detect-filestore.h
detect-flow-age.c
detect-flow-age.h
detect-flow.c detect/flow: fix DETECT_FLOW_FLAG_ESTABLISHED check 2 years ago
detect-flow.h
detect-flowbits.c detect: set ACTION_ALERT for rules that should alert 1 year ago
detect-flowbits.h detect/flowbits: remove DETECT_FLOWBITS_CMD_NOALERT 1 year ago
detect-flowint.c var-names: reimplement var name handling 2 years ago
detect-flowint.h
detect-flowvar.c var-names: reimplement var name handling 2 years ago
detect-flowvar.h var-names: reimplement var name handling 2 years ago
detect-fragbits.c detect/pcre: Use local match variables 2 years ago
detect-fragbits.h
detect-fragoffset.c detect/pcre: Use local match variables 2 years ago
detect-fragoffset.h
detect-frame.c
detect-frame.h
detect-ftpbounce.c
detect-ftpbounce.h
detect-ftpdata.c detect/pcre: Use local match variables 2 years ago
detect-ftpdata.h
detect-geoip.c
detect-geoip.h
detect-gid.c
detect-gid.h
detect-hostbits.c detect: set ACTION_ALERT for rules that should alert 1 year ago
detect-hostbits.h
detect-http-accept-enc.c
detect-http-accept-enc.h
detect-http-accept-lang.c
detect-http-accept-lang.h
detect-http-accept.c
detect-http-accept.h
detect-http-client-body.c
detect-http-client-body.h
detect-http-connection.c
detect-http-connection.h
detect-http-content-len.c
detect-http-content-len.h
detect-http-content-type.c
detect-http-content-type.h
detect-http-cookie.c
detect-http-cookie.h
detect-http-header-common.c
detect-http-header-common.h
detect-http-header-names.c
detect-http-header-names.h
detect-http-header.c detect/http: report error on alloc failure 2 years ago
detect-http-header.h
detect-http-headers-stub.h
detect-http-headers.c
detect-http-headers.h
detect-http-host.c
detect-http-host.h
detect-http-location.c
detect-http-location.h
detect-http-method.c
detect-http-method.h
detect-http-protocol.c
detect-http-protocol.h
detect-http-raw-header.c
detect-http-raw-header.h
detect-http-referer.c
detect-http-referer.h
detect-http-request-line.c
detect-http-request-line.h
detect-http-response-line.c
detect-http-response-line.h
detect-http-server-body.c detect/http-server-body: avoid FP on toserver direction 1 year ago
detect-http-server-body.h
detect-http-server.c
detect-http-server.h
detect-http-start.c
detect-http-start.h
detect-http-stat-code.c
detect-http-stat-code.h
detect-http-stat-msg.c
detect-http-stat-msg.h
detect-http-ua.c
detect-http-ua.h
detect-http-uri.c
detect-http-uri.h
detect-http2.c
detect-http2.h
detect-icmp-id.c detect/pcre: Use local match variables 2 years ago
detect-icmp-id.h
detect-icmp-seq.c detect/pcre: Use local match variables 2 years ago
detect-icmp-seq.h
detect-icmpv4hdr.c
detect-icmpv4hdr.h
detect-icmpv6-mtu.c
detect-icmpv6-mtu.h
detect-icmpv6hdr.c
detect-icmpv6hdr.h
detect-icode.c detect/integers: harmonize parser return handling 1 year ago
detect-icode.h
detect-id.c detect/pcre: Use local match variables 2 years ago
detect-id.h
detect-ike-chosen-sa.c detect/pcre: Use local match variables 2 years ago
detect-ike-chosen-sa.h
detect-ike-exch-type.c
detect-ike-exch-type.h
detect-ike-key-exchange-payload-length.c
detect-ike-key-exchange-payload-length.h
detect-ike-key-exchange-payload.c
detect-ike-key-exchange-payload.h
detect-ike-nonce-payload-length.c
detect-ike-nonce-payload-length.h
detect-ike-nonce-payload.c
detect-ike-nonce-payload.h
detect-ike-spi.c
detect-ike-spi.h
detect-ike-vendor.c
detect-ike-vendor.h
detect-ipaddr.c
detect-ipaddr.h
detect-ipopts.c detect/ipopts: Handle multiple ip options 1 year ago
detect-ipopts.h detect/analyzer: add more details for ipopts 2 years ago
detect-ipproto.c detect/pcre: Use local match variables 2 years ago
detect-ipproto.h
detect-iprep.c detect/iprep: implement isset and isnotset 1 year ago
detect-iprep.h
detect-ipv4hdr.c
detect-ipv4hdr.h
detect-ipv6hdr.c
detect-ipv6hdr.h
detect-isdataat.c detect/pcre: Use local match variables 2 years ago
detect-isdataat.h
detect-itype.c detect/integers: harmonize parser return handling 1 year ago
detect-itype.h
detect-ja4-hash.c output/ja4: Restrict ja4 hashes to alerts 1 year ago
detect-ja4-hash.h ja4: implement for TLS and QUIC 1 year ago
detect-krb5-cname.c
detect-krb5-cname.h
detect-krb5-errcode.c detect/pcre: Use local match variables 2 years ago
detect-krb5-errcode.h
detect-krb5-msgtype.c detect/pcre: Use local match variables 2 years ago
detect-krb5-msgtype.h
detect-krb5-sname.c
detect-krb5-sname.h
detect-krb5-ticket-encryption.c
detect-krb5-ticket-encryption.h
detect-l3proto.c
detect-l3proto.h
detect-lua-extensions.c
detect-lua-extensions.h
detect-lua.c var-names: reimplement var name handling 2 years ago
detect-lua.h
detect-mark.c detect/pcre: Use local match variables 2 years ago
detect-mark.h
detect-metadata.c
detect-metadata.h
detect-modbus.c
detect-modbus.h
detect-mqtt-connack-sessionpresent.c
detect-mqtt-connack-sessionpresent.h
detect-mqtt-connect-clientid.c
detect-mqtt-connect-clientid.h
detect-mqtt-connect-flags.c detect/pcre: Use local match variables 2 years ago
detect-mqtt-connect-flags.h
detect-mqtt-connect-password.c
detect-mqtt-connect-password.h
detect-mqtt-connect-username.c
detect-mqtt-connect-username.h
detect-mqtt-connect-willmessage.c
detect-mqtt-connect-willmessage.h
detect-mqtt-connect-willtopic.c
detect-mqtt-connect-willtopic.h
detect-mqtt-flags.c detect/pcre: Use local match variables 2 years ago
detect-mqtt-flags.h
detect-mqtt-protocol-version.c
detect-mqtt-protocol-version.h
detect-mqtt-publish-message.c
detect-mqtt-publish-message.h
detect-mqtt-publish-topic.c
detect-mqtt-publish-topic.h
detect-mqtt-qos.c
detect-mqtt-qos.h
detect-mqtt-reason-code.c
detect-mqtt-reason-code.h
detect-mqtt-subscribe-topic.c
detect-mqtt-subscribe-topic.h
detect-mqtt-type.c
detect-mqtt-type.h
detect-mqtt-unsubscribe-topic.c
detect-mqtt-unsubscribe-topic.h
detect-msg.c
detect-msg.h
detect-nfs-procedure.c detect/nfs: do not free a null pointer 11 months ago
detect-nfs-procedure.h
detect-nfs-version.c
detect-nfs-version.h
detect-noalert.c detect/noalert: point noalert/alert to new doc 1 year ago
detect-noalert.h
detect-nocase.c detect/content: cleanup nocase conversion 2 years ago
detect-nocase.h
detect-offset.c
detect-offset.h
detect-parse.c detect: set ACTION_ALERT for rules that should alert 1 year ago
detect-parse.h detect/pcre: Use local match variables 2 years ago
detect-pcre.c var-names: reimplement var name handling 2 years ago
detect-pcre.h
detect-pkt-data.c
detect-pkt-data.h
detect-pktvar.c var-names: reimplement var name handling 2 years ago
detect-pktvar.h
detect-prefilter.c
detect-prefilter.h
detect-priority.c detect/pcre: Use local match variables 2 years ago
detect-priority.h
detect-quic-cyu-hash.c
detect-quic-cyu-hash.h
detect-quic-cyu-string.c
detect-quic-cyu-string.h
detect-quic-sni.c
detect-quic-sni.h
detect-quic-ua.c
detect-quic-ua.h
detect-quic-version.c
detect-quic-version.h
detect-rawbytes.c
detect-rawbytes.h
detect-reference.c detect/pcre: Use local match variables 2 years ago
detect-reference.h
detect-replace.c
detect-replace.h
detect-requires.c requires: add requires keyword 2 years ago
detect-requires.h requires: add requires keyword 2 years ago
detect-rev.c
detect-rev.h
detect-rfb-name.c
detect-rfb-name.h
detect-rfb-secresult.c detect/pcre: Use local match variables 2 years ago
detect-rfb-secresult.h
detect-rfb-sectype.c detect/integers: harmonize parser return handling 1 year ago
detect-rfb-sectype.h
detect-rpc.c detect/pcre: Use local match variables 2 years ago
detect-rpc.h
detect-sameip.c
detect-sameip.h
detect-sid.c
detect-sid.h
detect-sip-method.c
detect-sip-method.h
detect-sip-protocol.c
detect-sip-protocol.h
detect-sip-request-line.c
detect-sip-request-line.h
detect-sip-response-line.c
detect-sip-response-line.h
detect-sip-stat-code.c
detect-sip-stat-code.h
detect-sip-stat-msg.c
detect-sip-stat-msg.h
detect-sip-uri.c
detect-sip-uri.h
detect-smb-ntlmssp.c
detect-smb-ntlmssp.h
detect-smb-share.c
detect-smb-share.h
detect-snmp-community.c
detect-snmp-community.h
detect-snmp-pdu_type.c detect/pcre: Use local match variables 2 years ago
detect-snmp-pdu_type.h
detect-snmp-usm.c
detect-snmp-usm.h
detect-snmp-version.c detect/snmp: do not bother to free a null pointer 1 year ago
detect-snmp-version.h
detect-ssh-hassh-server-string.c
detect-ssh-hassh-server-string.h
detect-ssh-hassh-server.c
detect-ssh-hassh-server.h
detect-ssh-hassh-string.c
detect-ssh-hassh-string.h
detect-ssh-hassh.c
detect-ssh-hassh.h
detect-ssh-proto-version.c detect-ssh-proto-version: use FAIL macros in tests 2 years ago
detect-ssh-proto-version.h
detect-ssh-proto.c
detect-ssh-proto.h
detect-ssh-software-version.c detect/pcre: Use local match variables 2 years ago
detect-ssh-software-version.h
detect-ssh-software.c
detect-ssh-software.h
detect-ssl-state.c detect/pcre: Use local match variables 2 years ago
detect-ssl-state.h
detect-ssl-version.c
detect-ssl-version.h
detect-stream_size.c detect/stream_size: fix prefiltering registration 2 years ago
detect-stream_size.h
detect-tag.c detect/pcre: Use local match variables 2 years ago
detect-tag.h
detect-target.c detect/pcre: Use local match variables 2 years ago
detect-target.h
detect-tcp-ack.c
detect-tcp-ack.h
detect-tcp-flags.c detect/pcre: Use local match variables 2 years ago
detect-tcp-flags.h
detect-tcp-seq.c
detect-tcp-seq.h
detect-tcp-window.c detect-tcp-window: Convert unittests to new FAIL/PASS API 2 years ago
detect-tcp-window.h
detect-tcphdr.c
detect-tcphdr.h
detect-tcpmss.c
detect-tcpmss.h
detect-template-rust-buffer.c
detect-template-rust-buffer.h
detect-template.c detect/pcre: Use local match variables 2 years ago
detect-template.h
detect-template2.c
detect-template2.h
detect-threshold.c detect/pcre: Use local match variables 2 years ago
detect-threshold.h
detect-tls-cert-fingerprint.c
detect-tls-cert-fingerprint.h
detect-tls-cert-issuer.c
detect-tls-cert-issuer.h
detect-tls-cert-serial.c
detect-tls-cert-serial.h
detect-tls-cert-subject.c
detect-tls-cert-subject.h
detect-tls-cert-validity.c detect/pcre: Use local match variables 2 years ago
detect-tls-cert-validity.h
detect-tls-certs.c detect/tls.certs: fix direction handling 1 year ago
detect-tls-certs.h
detect-tls-ja3-hash.c ja4: implement for TLS and QUIC 1 year ago
detect-tls-ja3-hash.h
detect-tls-ja3-string.c ja4: implement for TLS and QUIC 1 year ago
detect-tls-ja3-string.h
detect-tls-ja3s-hash.c ja4: implement for TLS and QUIC 1 year ago
detect-tls-ja3s-hash.h
detect-tls-ja3s-string.c ja4: implement for TLS and QUIC 1 year ago
detect-tls-ja3s-string.h
detect-tls-random.c tls/random: fix incorrect direction handling 1 year ago
detect-tls-random.h
detect-tls-sni.c
detect-tls-sni.h
detect-tls-version.c detect/pcre: Use local match variables 2 years ago
detect-tls-version.h
detect-tls.c detect/tls.store: fix direction check 1 year ago
detect-tls.h
detect-tos.c detect/pcre: Use local match variables 2 years ago
detect-tos.h
detect-transform-casechange.c detect/transform: Add case changing transforms 2 years ago
detect-transform-casechange.h detect/transform: Add case changing transforms 2 years ago
detect-transform-compress-whitespace.c
detect-transform-compress-whitespace.h
detect-transform-dotprefix.c
detect-transform-dotprefix.h
detect-transform-header-lowercase.c detect: header_lowercase transform 2 years ago
detect-transform-header-lowercase.h detect: header_lowercase transform 2 years ago
detect-transform-md5.c
detect-transform-md5.h
detect-transform-pcrexform.c
detect-transform-pcrexform.h
detect-transform-sha1.c
detect-transform-sha1.h
detect-transform-sha256.c
detect-transform-sha256.h
detect-transform-strip-pseudo-headers.c detect: strip_pseudo_headers transform 2 years ago
detect-transform-strip-pseudo-headers.h detect: strip_pseudo_headers transform 2 years ago
detect-transform-strip-whitespace.c
detect-transform-strip-whitespace.h
detect-transform-urldecode.c
detect-transform-urldecode.h
detect-transform-xor.c
detect-transform-xor.h
detect-ttl.c
detect-ttl.h
detect-udphdr.c
detect-udphdr.h
detect-uricontent.c
detect-uricontent.h
detect-urilen.c
detect-urilen.h
detect-within.c
detect-within.h
detect-xbits.c detect: set ACTION_ALERT for rules that should alert 1 year ago
detect-xbits.h
detect.c detect: log relevant frames app-layer metadata 1 year ago
detect.h detect: set ACTION_ALERT for rules that should alert 1 year ago
device-storage.c
device-storage.h
feature.c
feature.h ja4: implement for TLS and QUIC 1 year ago
flow-bit.c flow-bit: Convert unittests to new FAIL/PASS API 2 years ago
flow-bit.h
flow-bypass.c flow-bypass: Set bypass thread to running state 2 years ago
flow-bypass.h
flow-hash.c
flow-hash.h
flow-manager.c general: Remove unused include files 2 years ago
flow-manager.h
flow-private.h
flow-queue.c
flow-queue.h
flow-spare-pool.c
flow-spare-pool.h
flow-storage.c
flow-storage.h
flow-timeout.c tcp: fix 'broken ack' on flow timeout 11 months ago
flow-timeout.h
flow-util.c macset: remove dead flow init/cleanup code 2 years ago
flow-util.h macset: remove dead flow init/cleanup code 2 years ago
flow-var.c
flow-var.h
flow-worker.c detect: flush when setting no_inspection 1 year ago
flow-worker.h
flow.c bypass: really bypass udp flow from first packet 1 year ago
flow.h detect: respect directionality for filestore 1 year ago
host-bit.c
host-bit.h
host-queue.c
host-queue.h
host-storage.c
host-storage.h
host-timeout.c host/iprep: run all timeout logic 2 years ago
host-timeout.h
host.c
host.h
interval-tree.h interval-tree: add augmentation fns to the tree 1 year ago
ippair-bit.c
ippair-bit.h
ippair-queue.c
ippair-queue.h
ippair-storage.c
ippair-storage.h
ippair-timeout.c
ippair-timeout.h
ippair.c
ippair.h
log-cf-common.c
log-cf-common.h
log-httplog.c
log-httplog.h
log-pcap.c pcap-log: use correct pkthdr size for limit enforcement 1 year ago
log-pcap.h
log-stats.c
log-stats.h
log-tcp-data.c
log-tcp-data.h
log-tlslog.c
log-tlslog.h
log-tlsstore.c
log-tlsstore.h
main.c
output-eve-stream.c
output-eve-stream.h
output-eve-syslog.c
output-eve-syslog.h
output-file.c
output-file.h
output-filedata.c
output-filedata.h
output-filestore.c output/filestore: delay snprintf until needed 1 year ago
output-filestore.h
output-flow.c
output-flow.h
output-json-alert.c eve/alert: fix validation check 11 months ago
output-json-alert.h
output-json-anomaly.c
output-json-anomaly.h
output-json-bittorrent-dht.c
output-json-bittorrent-dht.h
output-json-common.c
output-json-dcerpc.c
output-json-dcerpc.h
output-json-dhcp.c
output-json-dhcp.h
output-json-dnp3-objects.c
output-json-dnp3-objects.h
output-json-dnp3.c
output-json-dnp3.h
output-json-dns.c eve/dns: make version required 11 months ago
output-json-dns.h
output-json-drop.c output/drop: add verdict field 2 years ago
output-json-drop.h
output-json-email-common.c smtp: respect quotes for to and cc logging 1 year ago
output-json-email-common.h
output-json-file.c output: add storing boolean for files 2 years ago
output-json-file.h
output-json-flow.c eve: revert ethernet addresses when needed 1 year ago
output-json-flow.h
output-json-frame.c eve/frame: break out of logging callback if buffer is full 11 months ago
output-json-frame.h eve/frame: improve frame payload logging 11 months ago
output-json-ftp.c
output-json-ftp.h
output-json-http.c
output-json-http.h
output-json-http2.c
output-json-http2.h
output-json-ike.c
output-json-ike.h
output-json-krb5.c
output-json-krb5.h
output-json-metadata.c
output-json-metadata.h
output-json-modbus.c
output-json-modbus.h
output-json-mqtt.c
output-json-mqtt.h
output-json-netflow.c eve: revert ethernet addresses when needed 1 year ago
output-json-netflow.h
output-json-nfs.c
output-json-nfs.h
output-json-pgsql.c pgsql: use new API style for extern C functions 11 months ago
output-json-pgsql.h output/json: add pgsql metadata logging to alerts 11 months ago
output-json-quic.c output/ja4: Log ja4 hashes iff configured 1 year ago
output-json-quic.h output/ja4: Restrict ja4 hashes to alerts 1 year ago
output-json-rdp.c
output-json-rdp.h
output-json-rfb.c
output-json-rfb.h
output-json-sip.c
output-json-sip.h
output-json-smb.c
output-json-smb.h
output-json-smtp.c output/email: use SCCalloc for OutputJsonEmailCtx 2 years ago
output-json-smtp.h
output-json-snmp.c
output-json-snmp.h
output-json-ssh.c
output-json-ssh.h
output-json-stats.c stats: Fix non-worker stats missing 1 year ago
output-json-stats.h stats: Add unittest for basic stats serialization 1 year ago
output-json-template.c
output-json-template.h
output-json-tftp.c
output-json-tftp.h
output-json-tls.c tls: do not break custom fields when enabling JA4 10 months ago
output-json-tls.h output/ja4: Log ja4 hashes iff configured 1 year ago
output-json.c membuffer: turn complex macros into functions 11 months ago
output-json.h eve: revert ethernet addresses when needed 1 year ago
output-lua.c output/lua: handle registration error 1 year ago
output-lua.h
output-packet.c
output-packet.h
output-stats.c
output-stats.h output/stats: Handle stat names w/out scope 2 years ago
output-streaming.c output/streaming: suppress noisy start up message 1 year ago
output-streaming.h
output-tx.c output: log tx only when there is a fresh app update 1 year ago
output-tx.h
output.c
output.h
packet-queue.c
packet-queue.h
packet.c detect: set ACTION_ALERT for rules that should alert 1 year ago
packet.h
pkt-var.c
pkt-var.h
queue.h
reputation.c reputation: minor cleanup 1 year ago
reputation.h detect/iprep: allow 0 as a reputation value 1 year ago
respond-reject-libnet11.c
respond-reject-libnet11.h
respond-reject.c
respond-reject.h
runmode-af-packet.c capture: improve IDS + IPS check 1 year ago
runmode-af-packet.h
runmode-af-xdp.c threading: set min thread stack size; set it early 2 years ago
runmode-af-xdp.h
runmode-dpdk.c dpdk: replace TSC clock with GetTime (gettimeofday) function 1 year ago
runmode-dpdk.h dpdk: add interrupt (power-saving) mode 1 year ago
runmode-erf-dag.c threading: set min thread stack size; set it early 2 years ago
runmode-erf-dag.h
runmode-erf-file.c threading: set min thread stack size; set it early 2 years ago
runmode-erf-file.h
runmode-ipfw.c threading: set min thread stack size; set it early 2 years ago
runmode-ipfw.h
runmode-napatech.c napatech: emit HBA deprecation only once 1 year ago
runmode-napatech.h
runmode-netmap.c capture: improve IDS + IPS check 1 year ago
runmode-netmap.h
runmode-nflog.c threading: set min thread stack size; set it early 2 years ago
runmode-nflog.h
runmode-nfq.c threading: set min thread stack size; set it early 2 years ago
runmode-nfq.h
runmode-pcap-file.c runmodes: remove obsolete references to pcap auto modes 2 years ago
runmode-pcap-file.h
runmode-pcap.c runmodes: remove obsolete references to pcap auto modes 2 years ago
runmode-pcap.h
runmode-pfring.c pfring: fix leak of configuration data and in single mode 1 year ago
runmode-pfring.h
runmode-unittests.c stats: Add unittest for basic stats serialization 1 year ago
runmode-unittests.h
runmode-unix-socket.c hostbits: release use_cnt for unix (add|remove)-hostbit 1 year ago
runmode-unix-socket.h multi-tenant: add reload-tenants command 2 years ago
runmode-windivert.c threading: set min thread stack size; set it early 2 years ago
runmode-windivert.h
runmodes.c ips: check for livedev.use-for-tracking 1 year ago
runmodes.h threading: set min thread stack size; set it early 2 years ago
rust-context.c
rust-context.h
rust.h
source-af-packet.c af-packet: fetch mtu info once 2 years ago
source-af-packet.h
source-af-xdp.c
source-af-xdp.h
source-dpdk.c dpdk: replace TSC clock with GetTime (gettimeofday) function 1 year ago
source-dpdk.h dpdk: replace TSC clock with GetTime (gettimeofday) function 1 year ago
source-erf-dag.c source/erf-dag: compiler warnings 2 years ago
source-erf-dag.h
source-erf-file.c endace: Fix source-dag timestamps 2 years ago
source-erf-file.h
source-ipfw.c ipfw: close(2) instead shutdown(2) of the divert(4) socket 2 years ago
source-ipfw.h
source-napatech.c napatech: Fix packet timestamps 2 years ago
source-napatech.h
source-netmap.c netmap: Release lock to avoid deadlock 1 year ago
source-netmap.h
source-nflog.c
source-nflog.h
source-nfq-prototypes.h
source-nfq.c stats: update ips capture counters centrally 2 years ago
source-nfq.h
source-pcap-file-directory-helper.c stat: add wrappers to isolate OS_WIN32 specifics 2 years ago
source-pcap-file-directory-helper.h
source-pcap-file-helper.c pcap: support LINKTYPE_IPV6 (229) 1 year ago
source-pcap-file-helper.h
source-pcap-file.c
source-pcap-file.h
source-pcap.c util/ioctl: use LiveDevice to retrieve name 2 years ago
source-pcap.h
source-pfring.c pfring: fix leak of configuration data and in single mode 1 year ago
source-pfring.h
source-windivert-prototypes.h
source-windivert.c src: checks to avoid divisions by zero 2 years ago
source-windivert.h
stream-tcp-cache.c
stream-tcp-cache.h
stream-tcp-inline.c
stream-tcp-inline.h
stream-tcp-list.c
stream-tcp-list.h
stream-tcp-private.h
stream-tcp-reassemble.c stream: const args for StreamReassembleLog 11 months ago
stream-tcp-reassemble.h
stream-tcp-sack.c
stream-tcp-sack.h
stream-tcp-util.c
stream-tcp-util.h
stream-tcp.c detect: pseudo-packets inherit inspect flags from parent packet 10 months ago
stream-tcp.h stream: const args for StreamReassembleLog 11 months ago
stream.c
stream.h
suricata-common.h dpdk: add hugepage hint to lower the amount of reserved hugepages 2 years ago
suricata-plugin.h eve: remove some dead code 2 years ago
suricata.c ja4: implement for TLS and QUIC 1 year ago
suricata.h
threads-debug.h
threads-profile.h
threads.c
threads.h
threadvars.h
tm-modules.c
tm-modules.h
tm-queuehandlers.c
tm-queuehandlers.h
tm-queues.c
tm-queues.h
tm-threads-common.h
tm-threads.c threads: give threads more time to get ready 1 year ago
tm-threads.h detect: inspect all packets in multi-layer tunneling 2 years ago
tmqh-flow.c
tmqh-flow.h
tmqh-packetpool.c packetpool: signal waiter within lock 2 years ago
tmqh-packetpool.h packetpool: remove WaitForN logic as it is unused 2 years ago
tmqh-simple.c threads/mutex: Ensure mutex held before signaling 1 year ago
tmqh-simple.h
tree.h
unix-manager.c unix-manager: add \n string to buffer using correct API call 11 months ago
unix-manager.h
util-action.c detect: set ACTION_ALERT for rules that should alert 1 year ago
util-action.h
util-affinity.c
util-affinity.h
util-atomic.c
util-atomic.h
util-base64.c util/base64: fix buffer overflow 1 year ago
util-base64.h
util-bloomfilter-counting.c
util-bloomfilter-counting.h
util-bloomfilter.c
util-bloomfilter.h
util-bpf.c
util-bpf.h
util-buffer.c membuffer: return bytes written 11 months ago
util-buffer.h membuffer: annotate printf style function 11 months ago
util-byte.c
util-byte.h
util-checksum.c
util-checksum.h
util-cidr.c
util-cidr.h
util-classification-config.c classification: fix multi-tenant loading issues 2 years ago
util-classification-config.h classification: fix multi-tenant loading issues 2 years ago
util-clock.h
util-conf.c stat: add wrappers to isolate OS_WIN32 specifics 2 years ago
util-conf.h
util-config.h
util-coredump-config.c
util-coredump-config.h
util-cpu.c
util-cpu.h
util-daemon.c
util-daemon.h
util-datalink.c
util-datalink.h
util-debug-filters.c
util-debug-filters.h
util-debug.c
util-debug.h
util-decode-mime.c util/mime: fix memory leak 1 year ago
util-decode-mime.h mime: avoid quadratic complexity in MimeDecAddEntity 2 years ago
util-detect.c
util-detect.h
util-device.c device: don't crash on unix command 'iface-bypassed-stat' 1 year ago
util-device.h af-packet: fetch mtu info once 2 years ago
util-dpdk-bonding.c dpdk: support new 23.11 DPDK bonding API 2 years ago
util-dpdk-bonding.h
util-dpdk-i40e.c
util-dpdk-i40e.h
util-dpdk-ice.c dpdk: support 52 byte long key on ice (E810) cards 1 year ago
util-dpdk-ice.h dpdk: support 52 byte long key on ice (E810) cards 1 year ago
util-dpdk-ixgbe.c
util-dpdk-ixgbe.h
util-dpdk.c dpdk: rework hugepage hints to use per-numa information 2 years ago
util-dpdk.h dpdk: rework hugepage hints to use per-numa information 2 years ago
util-ebpf.c
util-ebpf.h
util-enum.c
util-enum.h
util-error.c errors: add SC_ENOENT error 1 year ago
util-error.h errors: add SC_ENOENT error 1 year ago
util-exception-policy.c
util-exception-policy.h
util-file-decompression.c
util-file-decompression.h
util-file-swf-decompression.c
util-file-swf-decompression.h
util-file.c detect: respect directionality for filestore 1 year ago
util-file.h
util-fix_checksum.c
util-fix_checksum.h
util-fmemopen.c
util-fmemopen.h
util-hash-lookup3.c
util-hash-lookup3.h
util-hash-string.c
util-hash-string.h
util-hash.c
util-hash.h
util-hashlist.c
util-hashlist.h
util-host-info.c host-info: remove pcre2_substring_list_free use 1 year ago
util-host-info.h
util-host-os-info.c
util-host-os-info.h
util-hugepages.c hugepages: run hugepage check only on DPDK runmode and on Linux 1 year ago
util-hugepages.h dpdk: rework hugepage hints to use per-numa information 2 years ago
util-hyperscan.c
util-hyperscan.h
util-ioctl.c af-packet: fetch mtu info once 2 years ago
util-ioctl.h util/ioctl: use LiveDevice to retrieve name 2 years ago
util-ip.c
util-ip.h
util-ja3.c ja3: make feature compile time configurable 1 year ago
util-ja3.h ja3: make feature compile time configurable 1 year ago
util-ja4.h ja4: implement for TLS and QUIC 1 year ago
util-landlock.c
util-landlock.h
util-log-redis.c
util-log-redis.h
util-logopenfile.c outputs: call plugin ThreadDeinit, not Deinit 2 years ago
util-logopenfile.h eve: remove some dead code 2 years ago
util-lua-common.c
util-lua-common.h
util-lua-dnp3-objects.c
util-lua-dnp3-objects.h
util-lua-dnp3.c
util-lua-dnp3.h
util-lua-dns.c
util-lua-dns.h
util-lua-hassh.c
util-lua-hassh.h
util-lua-http.c
util-lua-http.h
util-lua-ja3.c
util-lua-ja3.h
util-lua-smtp.c
util-lua-smtp.h
util-lua-ssh.c
util-lua-ssh.h
util-lua-tls.c
util-lua-tls.h
util-lua.c
util-lua.h
util-luajit.c
util-luajit.h
util-macset.c macset: remove dead flow init/cleanup code 2 years ago
util-macset.h
util-magic.c
util-magic.h
util-mem.c
util-mem.h
util-memcmp.c
util-memcmp.h
util-memcpy.h
util-memrchr.c
util-memrchr.h
util-misc.c util-misc: Convert unittests to new FAIL/PASS API 2 years ago
util-misc.h
util-mpm-ac-bs.c
util-mpm-ac-bs.h
util-mpm-ac-ks-small.c
util-mpm-ac-ks.c
util-mpm-ac-ks.h
util-mpm-ac.c mpm: allocate StateQueue on the heap 2 years ago
util-mpm-ac.h
util-mpm-hs.c
util-mpm-hs.h
util-mpm.c
util-mpm.h
util-napatech.c napatech: remove superfluous log messages 2 years ago
util-napatech.h
util-optimize.h
util-pages.c
util-pages.h
util-path.c path: new funcs to merge paths 2 years ago
util-path.h path: new funcs to merge paths 2 years ago
util-pidfile.c
util-pidfile.h
util-plugin.c
util-plugin.h
util-pool-thread.c
util-pool-thread.h
util-pool.c src: checks to avoid divisions by zero 2 years ago
util-pool.h
util-port-interval-tree.c util/interval-tree: fix coverity warning 1 year ago
util-port-interval-tree.h util/interval-tree: add utility fns 1 year ago
util-prefilter.c
util-prefilter.h
util-print.c
util-print.h
util-privs.c privs: refactor SCGetUser/GroupID to void functions 2 years ago
util-privs.h privs: refactor SCGetUser/GroupID to void functions 2 years ago
util-profiling-keywords.c profiling: allow absolute paths 12 months ago
util-profiling-locks.c
util-profiling-locks.h
util-profiling-prefilter.c profiling: allow absolute paths 12 months ago
util-profiling-rulegroups.c profiling: allow absolute paths 12 months ago
util-profiling-rules.c profiling: allow absolute paths 12 months ago
util-profiling.c profiling: allow absolute paths 12 months ago
util-profiling.h profiling/rules: Improve dynamic rule handling 1 year ago
util-proto-name.c
util-proto-name.h
util-radix-tree.c util/radix-tree: fix potential dereference of nullptr 1 year ago
util-radix-tree.h radix: Detect duplicate netblocks 2 years ago
util-random.c
util-random.h
util-reference-config.c reference: fix multi-tenant loading issues 2 years ago
util-reference-config.h reference: fix multi-tenant loading issues 2 years ago
util-rohash.c
util-rohash.h
util-rule-vars.c
util-rule-vars.h
util-runmodes.c
util-runmodes.h
util-running-modes.c
util-running-modes.h
util-signal.c
util-signal.h
util-spm-bm.c
util-spm-bm.h
util-spm-bs.c
util-spm-bs.h
util-spm-bs2bm.c
util-spm-bs2bm.h
util-spm-hs.c spm/hs: don't exit on bad patterns 2 years ago
util-spm-hs.h
util-spm.c
util-spm.h
util-storage.c
util-storage.h
util-streaming-buffer.c app-layer: Set sc_errno upon error return 1 year ago
util-streaming-buffer.h
util-strlcatu.c
util-strlcpyu.c
util-strptime.c
util-sysfs.c sysfs: fix minor compile warning 2 years ago
util-sysfs.h
util-syslog.c
util-syslog.h
util-thash.c util/hash: use randomized hash algorithm 10 months ago
util-thash.h util/hash: use randomized hash algorithm 10 months ago
util-threshold-config.c detect: set ACTION_ALERT for rules that should alert 1 year ago
util-threshold-config.h threshold: fix multi-tenant file parsing 2 years ago
util-time.c
util-time.h util/time: Improve usecs handling in time macros 2 years ago
util-unittest-helper.c detect: avoids case of useless detection on txs 2 years ago
util-unittest-helper.h
util-unittest.c
util-unittest.h
util-validate.h
util-var-name.c var-names: reimplement var name handling 2 years ago
util-var-name.h var-names: reimplement var name handling 2 years ago
util-var.c
util-var.h
win32-misc.c
win32-misc.h
win32-service.c
win32-service.h
win32-syscall.c
win32-syscall.h
win32-syslog.h