Feature #6496: dns: new detection buffer: dns.answer.name - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #6496

closed

dns: new detection buffer: dns.answer.name

Added by Jason Ish about 1 year ago. Updated about 1 year ago.

Status:

Closed

Priority:

Normal

Assignee:

Jason Ish

Target version:

8.0.0-beta1

Effort:

Difficulty:

Label:

Description

Add a new buffer, dns.answer.name to allow content matches on the "name" field in the DNS answers array.

History
Notes
Property changes

Actions

Copy link

Updated by Jason Ish about 1 year ago

Status changed from In Progress to In Review

PR: https://github.com/OISF/suricata/pull/9795

Actions

Copy link

Updated by Jason Ish about 1 year ago

Blocks Bug #6281: dns: structure of query differs between "alert" and "dns" event types added

Actions

Copy link

Updated by Jason Ish about 1 year ago

Status changed from In Review to Closed

Merged.

Actions

Copy link

Updated by Jason Ish about 1 year ago

Blocks deleted (Bug #6281: dns: structure of query differs between "alert" and "dns" event types)

Actions

Copy link

Also available in: Atom PDF

Project

General

Profile

Suricata

Custom queries

Feature #6496

dns: new detection buffer: dns.answer.name

Updated by Jason Ish about 1 year ago

Updated by Jason Ish about 1 year ago

Updated by Jason Ish about 1 year ago

Updated by Jason Ish about 1 year ago