Actions
Task #2309
open
VJ
VJ
Task #4763: tracking: Suricon brainstorms
SuriCon 2017 brainstorm
Task #2309:
SuriCon 2017 brainstorm
Added by Victor Julien over 8 years ago. Updated 7 months ago.
Effort:
Difficulty:
Label:
Description
Meta ticket. Add relations to this ticket for the tickets discussed at SuriCon or created after SuriCon brainstorm.
VJ Updated by Victor Julien over 8 years ago Actions #1
- Related to Feature #2308: threshold/suppress by http_host added
VJ Updated by Victor Julien over 8 years ago Actions #2
- Related to Feature #2310: lua: expose xbits added
VJ Updated by Victor Julien over 8 years ago Actions #3
- Related to Feature #2311: math on extracted values added
VJ Updated by Victor Julien over 8 years ago Actions #4
- Related to Feature #2312: http: parsing for async streams added
VJ Updated by Victor Julien over 8 years ago Actions #5
- Related to Task #2313: tracking: save & restore state when suricata restarts added
VJ Updated by Victor Julien over 8 years ago Actions #6
- Related to Feature #2314: protocol parser: rdp added
VJ Updated by Victor Julien over 8 years ago Actions #7
- Related to Feature #646: smb log feature to be introduced added
VJ Updated by Victor Julien over 8 years ago Actions #8
- Related to Feature #2315: eve: ftp logging added
VJ Updated by Victor Julien over 8 years ago Actions #9
- Related to Feature #2316: global memcap added
VJ Updated by Victor Julien over 8 years ago Actions #10
- Related to Optimization #2317: rcu added
VJ Updated by Victor Julien over 8 years ago Actions #11
- Related to Feature #2303: file-store enhancements (aka file-store v2): deduplication; hash-based naming; json metadata and cleanup tooling added
VJ Updated by Victor Julien over 8 years ago Actions #12
- Related to Task #2278: tracking: failing better added
VJ Updated by Victor Julien over 8 years ago Actions #13
- Related to Feature #550: Extract file attachments from FTP added
VJ Updated by Victor Julien over 8 years ago Actions #14
- Related to Feature #2192: JA3 TLS client fingerprinting added
VJ Updated by Victor Julien over 8 years ago Actions #15
- Related to Feature #2279: TLS 1.3 decoding, SNI extraction and logging added
VJ Updated by Victor Julien over 8 years ago Actions #16
- Related to Feature #2280: http: rules that match both request and response added
VJ Updated by Victor Julien over 8 years ago Actions #17
- Related to Feature #1576: http: byte-range support added
VJ Updated by Victor Julien over 8 years ago Actions #18
- Related to Feature #2281: tcp stream: simpler IDS handling of overlap evasions added
VJ Updated by Victor Julien over 8 years ago Actions #19
- Related to Feature #120: Capture full session on alert added
VJ Updated by Victor Julien over 8 years ago Actions #20
- Related to Feature #385: Configuration option to log all known (pcap) data for a stream when an alert fires added
VJ Updated by Victor Julien over 8 years ago Actions #21
- Related to Task #2219: Save pcap only if alert added
VJ Updated by Victor Julien over 8 years ago Actions #22
- Related to Feature #2290: lua: use script as transform added
VJ Updated by Victor Julien over 8 years ago Actions #23
- Related to Feature #2284: detect partial file transfers added
VJ Updated by Victor Julien over 8 years ago Actions #24
- Related to Feature #1705: hyperscan pcre integration added
VJ Updated by Victor Julien over 8 years ago Actions #25
- Related to Feature #1006: transformation api added
VJ Updated by Victor Julien over 8 years ago Actions #26
- Related to Feature #2291: traffic-id: ruleset for traffic classification and bypass added
VJ Updated by Victor Julien over 8 years ago Actions #27
- Related to Feature #2285: modify memcaps over unix socket added
VJ Updated by Victor Julien over 8 years ago Actions #28
- Related to Feature #2283: turn content modifiers into 'sticky buffers' added
VJ Updated by Victor Julien over 8 years ago Actions #29
- Related to Feature #1948: allow filestore name configuration options added
VJ Updated by Victor Julien over 8 years ago Actions #30
- Related to Documentation #2286: doc: document best practices around handling file extraction added
VJ Updated by Victor Julien over 8 years ago Actions #31
- Related to Feature #2282: event log aka weird.log added
VJ Updated by Victor Julien over 8 years ago Actions #32
- Related to Optimization #2272: Analyze DNS response if query is not present added
VJ Updated by Victor Julien over 8 years ago Actions #33
- Related to Feature #741: Introduce endswith keyword added
VJ Updated by Victor Julien over 8 years ago Actions #34
- Related to Feature #742: startswith keyword added
VJ Updated by Victor Julien over 8 years ago Actions #35
- Related to Feature #735: Introduce content_len keyword added
VJ Updated by Victor Julien over 8 years ago Actions #36
- Related to Feature #2299: pcap: read directory with pcaps from the commandline added
VJ Updated by Victor Julien over 8 years ago Actions #37
- Related to Feature #2298: pcap: store pcaps in compressed form added
VJ Updated by Victor Julien over 8 years ago Actions #38
- Related to Feature #1828: YARA support added
VJ Updated by Victor Julien over 8 years ago Actions #39
- Related to Feature #1949: only write unique files added
VJ Updated by Victor Julien over 8 years ago Actions #40
- Related to Feature #962: Can I log the mac address of the source? added
VJ Updated by Victor Julien over 8 years ago Actions #41
- Related to Feature #2318: matching on large amounts of data with dynamic updates added
VJ Updated by Victor Julien over 8 years ago Actions #42
- Related to Feature #2319: Expose flow lifetime to the rulelanguage added
VJ Updated by Victor Julien over 8 years ago Actions #43
- Related to Feature #2320: configure host os policy over unix socket added
VJ Updated by Victor Julien over 8 years ago Actions #44
- Related to Optimization #2321: yaml: clean up usage of lists added
VJ Updated by Victor Julien over 8 years ago Actions #45
- Related to Support #2322: create place for easy sharing of test cases added
VJ Updated by Victor Julien about 8 years ago Actions #46
- Related to Feature #660: Update host policy from unix socket added
VJ Updated by Victor Julien about 6 years ago Actions #47
- Tracker changed from Support to Task
- Target version set to Support
VJ Updated by Victor Julien over 4 years ago Actions #48
- Parent task set to #4763
VJ Updated by Victor Julien almost 4 years ago Actions #49
- Status changed from New to Assigned
Actions