Project

General

Profile

Actions
Copy link

Feature #5705

open
OJ PC

protocol: Wireguard parser

Feature #5705: protocol: Wireguard parser

Added by Odin Jenseg over 3 years ago. Updated 5 months ago.

Status:
Assigned
Priority:
Normal
Assignee:
Pierre Chifflier
Target version:
TBD
Effort:
medium
Difficulty:
Label:
Protocol

Description

Adding a parser for the Wireguard VPN protocol.

  • Includes detection of the protocol using patterns.
  • Protocol logs

PR should be available before end of this year.

Related issues 1 (1 open0 closed)

Related to Suricata - Task #8123: Suricon 2025 BrainstormAssignedVictor JulienActions

VJ Updated by Victor Julien over 3 years ago Actions
Copy link
 #1

  • Status changed from New to In Progress

JF Updated by Juliana Fajardini Reichow 5 months ago Actions
Copy link
 #2

  • Related to Task #8123: Suricon 2025 Brainstorm added

JF Updated by Juliana Fajardini Reichow 5 months ago Actions
Copy link
 #3

Pierre Chifflier indicates he has a Wireguard parser.

VJ Updated by Victor Julien 5 months ago Actions
Copy link
 #4

  • Status changed from In Progress to Assigned
  • Assignee changed from Odin Jenseg to Pierre Chifflier

@Pierre Chifflier did you have that parser in your public rust crates or somewhere else?

In general we discussed at suricon 2025 that protocol detection is probably the most interesting part.

VJ Updated by Victor Julien 5 months ago Actions
Copy link
 #5

  • Subject changed from Add Wireguard parser to protocol: Wireguard parser
Actions
Copy link

Also available in: PDF Atom