https://redmine.openinfosecfoundation.org/https://redmine.openinfosecfoundation.org/favicon.ico?17011170022019-05-23T21:26:22ZOpen Information Security FoundationSuricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=121202019-05-23T21:26:22ZAndreas Herzoisf@herzandreas.de
<ul><li><strong>Assignee</strong> set to <i>Community Ticket</i></li><li><strong>Target version</strong> set to <i>TBD</i></li></ul><p>Are you interested to work on those as a contribution?</p> Suricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=122142019-05-24T13:14:07ZMichal Vymazal
<ul></ul><p>I will be very pleased. How can I help?</p> Suricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=122442019-05-27T20:49:19ZAndreas Herzoisf@herzandreas.de
<ul><li><strong>Status</strong> changed from <i>New</i> to <i>Assigned</i></li><li><strong>Assignee</strong> changed from <i>Community Ticket</i> to <i>Michal Vymazal</i></li></ul><p>The necessary steps are explained in <a class="external" href="https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Contributing">https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Contributing</a> and <a class="external" href="https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Suricata_Developers_Guide">https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Suricata_Developers_Guide</a> feel free to ask if you have any specific questions. You can also look at our github page <a class="external" href="https://github.com/OISF/suricata">https://github.com/OISF/suricata</a> and see how we work with PRs.</p> Suricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=122862019-05-28T20:22:29ZMichal Vymazal
<ul></ul><p>OK. Give me a week to study the rules, developers guide and the Contribution Agreement.</p> Suricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=124382019-06-04T20:32:31ZMichal Vymazal
<ul></ul><p>Suricata code location - Moloch, Suricata plugins</p>
<p>I will be glad to cooperate on this projects</p>
<p><a class="external" href="https://redmine.openinfosecfoundation.org/issues/2962">https://redmine.openinfosecfoundation.org/issues/2962</a><br /><a class="external" href="https://redmine.openinfosecfoundation.org/issues/2957">https://redmine.openinfosecfoundation.org/issues/2957</a></p>
<p>But, I can't locate the right part of the code in the repository (means Moloch and Suricata plugins)<br /><a class="external" href="https://github.com/OISF/suricata">https://github.com/OISF/suricata</a></p>
<p>Can you give me a contact to a responsible person, who will help me to<br />find the right part of Suricata plugin and Moloch code?</p>
<p>Thank you very much</p> Suricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=124432019-06-05T08:11:59ZPeter Manevpetermanev@gmail.com
<ul></ul><p>May be Pierre Chifflier (pollux on #suricata IRC) could help with some guidance with respect to the Suricata code.</p> Suricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=138902019-09-26T09:08:13ZVictor Julienvictor@inliniac.net
<ul><li><strong>Subject</strong> changed from <i>Suricata x Moloch - protocol detection. Proposals for IKEv2</i> to <i>eve: log more IKEv2 fields</i></li></ul> Suricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=147402019-11-23T09:21:35ZMichal Vymazal
<ul><li><strong>File</strong> <a href="/attachments/1859">IKEv2_Moloch_Screenshot_20190504_175220-2.png</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/1859/IKEv2_Moloch_Screenshot_20190504_175220-2.png">IKEv2_Moloch_Screenshot_20190504_175220-2.png</a> added</li><li><strong>File</strong> <a href="/attachments/1860">Screenshot_20191123_094316.png</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/1860/Screenshot_20191123_094316.png">Screenshot_20191123_094316.png</a> added</li><li><strong>File</strong> <a href="/attachments/1861">IKEv2-EventsList_Screenshot_20190504_175956.png</a> <a class="icon-only icon-download" title="Download" href="/attachments/download/1861/IKEv2-EventsList_Screenshot_20190504_175956.png">IKEv2-EventsList_Screenshot_20190504_175956.png</a> added</li></ul><p>The code should be located in Moloch-Suricata plugins<br /><a class="external" href="https://github.com/aol/moloch/tree/master/capture/plugins">https://github.com/aol/moloch/tree/master/capture/plugins</a></p> Suricata - Feature #2962: eve: log more IKEv2 fieldshttps://redmine.openinfosecfoundation.org/issues/2962?journal_id=151862020-01-30T13:34:54ZVictor Julienvictor@inliniac.net
<ul><li><strong>Label</strong> <i>Protocol</i> added</li></ul>