Project

General

Profile

Actions
Copy link

Feature #7565

closed

dcerpc: rpc interfaces info in request event

Added by Shivani Bhardwaj about 1 month ago. Updated about 1 month ago.

Status:
Closed
Priority:
Normal
Assignee:
Shivani Bhardwaj
Target version:
8.0.0-beta1
Effort:
low
Difficulty:
Label:

Description

RPC interface information comes with a BIND request for DCERPC which Suricata did log. However, the feedback from community was that the REQUEST type request should also carry this information for an easy correlation. Otherwise, one has to find the BIND request event for the same flow_id as a REQUEST request and find this information.

Actions
Copy link
 #1

Updated by Shivani Bhardwaj about 1 month ago

  • Status changed from Assigned to In Review
Actions
Copy link
 #2

Updated by Shivani Bhardwaj about 1 month ago

  • Status changed from In Review to Closed
Actions
Copy link

Also available in: Atom PDF