Project

General

Profile

Actions

Task #6443

open

Task #4763: tracking: Suricon brainstorms

Suricon 2023 brainstorm

Added by Victor Julien about 1 year ago. Updated about 1 year ago.

Status:
Assigned
Priority:
Normal
Assignee:
Target version:
Effort:
Difficulty:
Label:

Related issues 55 (45 open10 closed)

Related to Suricata - Feature #1199: protocol: LDAP supportClosedGiuseppe LongoActions
Related to Suricata - Task #5682: tracking: smb performance issuesAssignedVictor JulienActions
Related to Suricata - Optimization #5679: tracking: useful log outputNewOISF DevActions
Related to Suricata - Feature #5665: rules: bidirectional transaction matchingIn ReviewPhilippe AntoineActions
Related to Suricata - Feature #5664: "Scope" bits should have an expirationAssignedShivani BhardwajActions
Related to Suricata - Feature #2772: Add MPLS labels to alert outputNewCommunity TicketActions
Related to Suricata - Feature #5675: protocol: MMS SCADA supportNewCommunity TicketActions
Related to Suricata - Feature #5642: DNS: parity between log fields and detectionAssignedJason IshActions
Related to Suricata - Task #4772: tracking: parity between fields logged and fields available for detectionAssignedVictor JulienActions
Related to Suricata - Feature #5773: Support DNS over HTTPS (DoH)ClosedPhilippe AntoineActions
Related to Suricata - Task #4143: tracking: file.data improvementsAssignedJeff LucovskyActions
Related to Suricata - Feature #6206: Investigate a more intuitive use of the timestamp field in traffic/metadata eventsNewCommunity TicketActions
Related to Suricata - Documentation #6452: userguide/ftp: clarify usage around ftp and ftp.data keywordNewOISF DevActions
Related to Suricata - Task #4122: tracking: handle various TLS decrypt headers in proxies and decryption toolsAssignedVictor JulienActions
Related to Suricata - Task #2167: tracking: eve enhancementsNewOISF DevActions
Related to Suricata - Feature #5972: rules: "requires" keyword representing the minimum version of suricata to support the ruleClosedJason IshActions
Related to Suricata - Feature #6453: Support DNS over TLSNewOISF DevActions
Related to Suricata - Feature #4853: eve: Add information about Suricata versionNewOISF DevActions
Related to Suricata - Feature #6296: smtp: BDAT chunking support incl MIME parsingAssignedVictor JulienActions
Related to Suricata - Task #4380: tracking: improvements to bits, ints, varsAssignedVictor JulienActions
Related to Suricata - Feature #6456: output: binary loggingNewOISF DevActions
Related to Suricata - Feature #6457: eve: configurable list of fields in outputNewOISF DevActions
Related to Suricata - Documentation #6071: eve/schema: add descriptions to the schemaAssignedJason IshActions
Related to Suricata - Task #3299: tracking: Add support for industrial protocolNewCommunity TicketActions
Related to Suricata - Feature #6464: protocol: profibusNewCommunity TicketActions
Related to Suricata - Task #6463: eve/output: investigate how to track coverage / parityNewOISF DevActions
Related to Suricata - Feature #5838: dpdk: NIC encapsulation strippingAssignedLukas SismisActions
Related to Suricata - Feature #6465: multi-tenant: support vxlan as a selectorNewOISF DevActions
Related to Suricata - Feature #6466: multi-tenant: support mpls as a selectorNewOISF DevActions
Related to Suricata - Feature #6467: flow tracking: add other parameters to flow trackingNewOISF DevActions
Related to Suricata - Feature #6472: HTTP/3 supportNewOISF DevActions
Related to Suricata - Task #6473: detect: smtp keyword coverageAssignedVictor JulienActions
Related to Suricata - Task #6476: ftp: parity of logging and detection buffersNewOISF DevActions
Related to Suricata - Feature #6198: Feature Request: Add "SMTP" keywords for use in rulesNewOISF DevActions
Related to Suricata - Feature #4876: Additional FTP BuffersNewOISF DevActions
Related to Suricata - Feature #3260: SMTP Base64 Decoding of Message BodyNewOISF DevActions
Related to Suricata - Feature #3261: SMTP quoted-printable Decoding of Message BodyNewOISF DevActions
Related to Suricata - Documentation #6478: schema: add missing fieldsNewCommunity TicketActions
Related to Suricata - Feature #5489: research: multi version rules; or version dependent rulesClosedJason IshActions
Related to Suricata - Feature #6290: support case insensitive testing of HTTP header name existenceClosedPhilippe AntoineActions
Related to Suricata - Feature #5816: Exception policy stats countersResolvedJuliana Fajardini ReichowActions
Related to Suricata - Feature #6482: Deployment: detect if capture is good enoughNewOISF DevActions
Related to Suricata - Feature #5681: datasets: add more transform layers to match on domainsNewOISF DevActions
Related to Suricata - Task #5666: rules: help to visualize how a Suricata rule matches (different contents/offsets)In ProgressVictor JulienActions
Related to Suricata - Feature #5206: Buffer Dump UtilityNewOISF DevActions
Related to Suricata - Feature #2695: websocket supportClosedPhilippe AntoineActions
Related to Suricata - Feature #4776: lua: vendor latest lua stableIn ProgressJason IshActions
Related to Suricata - Feature #4775: lua: overhaul lua supportIn ProgressJason IshActions
Related to Suricata - Feature #4777: lua: implement sandboxingClosedJason IshActions
Related to Suricata - Documentation #6484: userguide: add keyword performance resultsNewOISF DevActions
Related to Suricata - Task #6485: [investigate] Scoring method for keywords and transformsNewOISF DevActions
Related to Suricata - Bug #6394: Sudden increase in capture.kernel_drops and tcp.pkt_on_wrong_thread after upgrading to 6.0.14ClosedPhilippe AntoineActions
Related to Suricata - Documentation #6486: userguide: explain pkt_on_wrong_thread counterNewOISF DevActions
Related to Suricata - Bug #5220: fast_pattern specification in base64_data shouldn't be allowedClosedShivani BhardwajActions
Related to Suricata - Feature #6487: transform: from_base64ClosedJeff LucovskyActions
Actions

Also available in: Atom PDF