Project

General

Profile

Actions
Copy link

Feature #2727

open
EL SB

dcerpc: UUID to service name mapping

Feature #2727: dcerpc: UUID to service name mapping

Added by Eric Leblond over 7 years ago. Updated 3 days ago.

Status:
In Review
Priority:
Normal
Assignee:
Shivani Bhardwaj
Target version:
9.0.0-beta1
Effort:
low
Difficulty:
low
Label:

Description

Microsoft is proposing a DCERPC UID to name mapping. It is used by Zeek to allow mapping of UID to human understandable names (see https://github.com/bro/bro/blob/master/scripts/base/protocols/dce-rpc/consts.bro).

We could integrate that into dcerpc output to get more user friendly events.

Related issues 1 (1 open0 closed)

Related to Suricata - Feature #8523: dcerpc: map opnum to the function namesIn ReviewShivani BhardwajActions

EL Updated by Eric Leblond over 7 years ago Actions
Copy link
 #1

  • Assignee set to Eric Leblond

VJ Updated by Victor Julien over 7 years ago Actions
Copy link
 #2

  • Status changed from New to Assigned
  • Target version set to 5.0beta1

VJ Updated by Victor Julien about 7 years ago Actions
Copy link
 #3

  • Priority changed from Normal to Low

VJ Updated by Victor Julien about 7 years ago Actions
Copy link
 #4

  • Target version changed from 5.0beta1 to 70

VJ Updated by Victor Julien over 6 years ago Actions
Copy link
 #5

  • Target version changed from 70 to TBD

VJ Updated by Victor Julien about 6 years ago Actions
Copy link
 #6

  • Assignee changed from Eric Leblond to OISF Dev

VJ Updated by Victor Julien 22 days ago Actions
Copy link
 #7

  • Related to Feature #8523: dcerpc: map opnum to the function names added

SB Updated by Shivani Bhardwaj 5 days ago Actions
Copy link
 #8

  • Status changed from Assigned to In Progress
  • Assignee changed from OISF Dev to Shivani Bhardwaj
  • Priority changed from Low to Normal
  • Target version changed from TBD to 9.0.0-beta1

SB Updated by Shivani Bhardwaj 5 days ago Actions
Copy link
 #9

  • Subject changed from DCERPC UID to name mapping to dcerpc: UUID to service name mapping

SB Updated by Shivani Bhardwaj 5 days ago Actions
Copy link
 #10

  • Difficulty changed from medium to low

SB Updated by Shivani Bhardwaj 3 days ago Actions
Copy link
 #11

  • Status changed from In Progress to In Review
Actions
Copy link

Also available in: PDF Atom