Project

General

Profile

Actions
Copy link

Task #4772

open

tracking: parity between fields logged and fields available for detection

Added by Victor Julien over 1 year ago. Updated 7 months ago.

Status:
Assigned
Priority:
Normal
Assignee:
Victor Julien
Target version:
-
Effort:
Difficulty:
Label:

Related issues 3 (3 open0 closed)

Related to Task #4762: Suricon 2021 brainstormAssignedVictor JulienActions
Related to Feature #4174: tracking: app-layer frame inspection supportIn ProgressVictor JulienActions
Related to Feature #5642: DNS: parity between log fields and detectionNewOISF DevActions
Actions
Copy link
 #1

Updated by Victor Julien over 1 year ago

  • Related to Feature #2021: doc: sha256 filesum extraction missing in documentation added
Actions
Copy link
 #2

Updated by Victor Julien over 1 year ago

  • Related to deleted (Feature #2021: doc: sha256 filesum extraction missing in documentation)
Actions
Copy link
 #3

Updated by Victor Julien over 1 year ago

  • Related to Task #4762: Suricon 2021 brainstorm added
Actions
Copy link
 #4

Updated by Victor Julien about 1 year ago

  • Related to Feature #4174: tracking: app-layer frame inspection support added
Actions
Copy link
 #5

Updated by Jason Ish 7 months ago

  • Related to Feature #5642: DNS: parity between log fields and detection added
Actions
Copy link
 #6

Updated by Philippe Antoine 7 months ago

My next thing here is to look into the schema.json for integers where there are no signature keywords, starting by the flow.nbpackets or such (as I did flow.age last)

Actions
Copy link

Also available in: Atom PDF