Project

General

Profile

Actions
Copy link

Task #6473

open

detect: smtp keyword coverage

Added by Victor Julien over 1 year ago. Updated 2 months ago.

Status:
Assigned
Priority:
Normal
Assignee:
Victor Julien
Target version:
TBD
Effort:
Difficulty:
Label:

Subtasks 6 (3 open3 closed)

Feature #776: rules: Add smtp_envelope and smtp_header keywordsAssignedOISF DevActions
Task #6474: detect: smtp body inspection keywordNewOISF DevActions
Task #6475: detect: smtp.subject keywordNewOISF DevActions
Feature #7515: detect: smtp.helo keywordClosedPhilippe AntoineActions
Feature #7516: detect: smtp.rcpt_to keywordClosedPhilippe AntoineActions
Feature #7517: detect: smtp.mail_from keywordClosedPhilippe AntoineActions

Related issues 5 (4 open1 closed)

Related to Suricata - Task #6443: Suricon 2023 brainstormAssignedVictor JulienActions
Related to Suricata - Task #4772: tracking: parity between fields logged and fields available for detectionAssignedVictor JulienActions
Related to Suricata - Feature #6198: smtp: add keywords for use in rulesNewOISF DevActions
Related to Suricata - Feature #4905: smtp: add stream app-layer frame support ClosedVictor JulienActions
Blocks Suricata - Story #6597: rules: improve rules keyword/output parityNewVictor JulienActions
Actions
Copy link

Also available in: Atom PDF