Project

General

Profile

Feature #2318

matching on large amounts of data with dynamic updates

Added by Victor Julien about 2 years ago. Updated 3 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Target version:
Effort:
Difficulty:
Label:

Description

For various threat intel and reputation feeds, it would be useful to have a more generalized way of doing this.


Subtasks

Feature #1249: http/dns ip-reputation alike techniqueClosedVictor JulienActions
Feature #1757: URL ReputationClosedVictor JulienActions

Related issues

Related to Support #2309: SuriCon 2017 brainstormNew12/01/2017Actions
Related to Support #2685: SuriCon 2018 brainstormNewActions
Related to Feature #713: tls.fingerprint - file usageClosedActions
Blocks Feature #2754: JA3 and JA3S - sets / reputationClosedActions

History

#1

Updated by Victor Julien about 2 years ago

#2

Updated by Victor Julien over 1 year ago

#3

Updated by Raymond Hansen about 1 year ago

  • Assignee changed from OISF Dev to Victor Julien
#4

Updated by Victor Julien about 1 year ago

#5

Updated by Victor Julien 12 months ago

#6

Updated by Victor Julien 8 months ago

  • Related to Feature #713: tls.fingerprint - file usage added
#7

Updated by Victor Julien 3 months ago

  • Status changed from New to Assigned
  • Target version changed from TBD to 5.0rc1
#8

Updated by Victor Julien 3 months ago

#9

Updated by Victor Julien 3 months ago

  • Status changed from Assigned to Closed

Also available in: Atom PDF