Feature #7894: output: log http2.window when needed - Suricata - Open Information Security Foundation

Actions

Copy link

Feature #7894

open

PA OD

output: log http2.window when needed

Feature #7894: output: log http2.window when needed

Added by Philippe Antoine 7 months ago. Updated 3 months ago.

Status:

Assigned

Priority:

Normal

Assignee:

OISF Dev

Target version:

9.0.0-beta1

Effort:

Difficulty:

Label:

Description

Some keywords like http2.window do not have a log field to match.
A rule using http2.window: >100; will not have in the alert the precise value seen on the wire.

There is also tcp.wscale and other keywords see https://github.com/OISF/suricata/pull/13816

Related issues 1 (1 open — 0 closed)

History
Property changes

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
#1

Related to Task #6644: tracking: detect: integer as first-class support added

PA Updated by Philippe Antoine 3 months ago Actions
Copy link
#2

Status changed from New to Assigned

Actions

Copy link

Also available in: PDF Atom

Project

General

Profile

Suricata

Custom queries

Feature #7894

output: log http2.window when needed

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
#1

PA Updated by Philippe Antoine 3 months ago Actions
Copy link
#2

Project

General

Profile

Suricata

Custom queries

Feature #7894

output: log http2.window when needed

PA Updated by Philippe Antoine 7 months ago ActionsCopy link #1

PA Updated by Philippe Antoine 3 months ago ActionsCopy link #2

PA Updated by Philippe Antoine 7 months ago Actions
Copy link
#1

PA Updated by Philippe Antoine 3 months ago Actions
Copy link
#2