Project

General

Profile

Actions
Copy link

Feature #7536

open
AD OD

detect/ldap: add keywords for LDAP BindRequest

Feature #7536: detect/ldap: add keywords for LDAP BindRequest

Added by Alice da Silva Akaki about 1 year ago. Updated 4 months ago.

Status:
New
Priority:
High
Assignee:
OISF Dev
Target version:
9.0.0-beta1
Effort:
Difficulty:
Label:

Description

ldap.bind_request.version, an integer between 1 and 127
ldap.bind_request.authentication, enum + an octet string

Eve fields to match:
ldap.request.bind_request.version

ldap.request.bind_request.sasl.mechanism
ldap.request.bind_request.sasl.credentials

Related issues 2 (2 open0 closed)

Related to Suricata - Feature #7470: detect/ldap: add ldap.bind.version keywordAssignedOISF DevActions
Blocks Suricata - Task #7452: ldap: add keywords to match outputIn ProgressOISF DevActions
Actions
Copy link

Also available in: PDF Atom