Open Information Security Foundation

11/04/2024

01:45 PM Suricata Feature #7114 (In Review): from_base64: allow matching on decode error

https://github.com/OISF/suricata/pull/12085 Jeff Lucovsky

11/02/2024

02:26 PM Suricata Feature #7146 (In Progress): decode: Create a decode event for unknown IP types

Currently, ipv6 raises an event when the "next header" is unknown. Jeff Lucovsky

12:59 PM Suricata Bug #7274: ssl_state:unknown not implemented

I've found that the unknown state occurs following a handshake failure; are there other conditions leaving the state ... Jeff Lucovsky

11/01/2024

04:45 PM Suricata Optimization #6855 (In Review): src: var code cleanups

https://github.com/OISF/suricata/pull/12076 Jeff Lucovsky

01:49 PM Suricata Bug #7274: ssl_state:unknown not implemented

In src/detect-ssl-state.c, the bit @DETECT_SSL_STATE_UNKNOWN@ is set when the @unknown@ keyword is used
That flag ... Jeff Lucovsky

10/28/2024

05:56 PM Suricata Feature #7351 (New): transform/from_base64: Support "relative" offsets

The from_base64 transform supports offset; for improved support with content matches, it should support "relative" to... Jeff Lucovsky

02:28 PM Suricata Optimization #7275 (Closed): tcp/reassemble: GetBlock takes O(nlgn) in worst case (7.0.x backport)

Merged in https://github.com/OISF/suricata/pull/12041 Jeff Lucovsky

02:26 PM Suricata Feature #845 (In Review): Memory consumption in stats.log

https://github.com/OISF/suricata/pull/12045 Jeff Lucovsky

10/27/2024

02:04 PM Suricata Feature #845: Memory consumption in stats.log

I've completed the changes to add memcap/memuse/stats per the following. The dataset manipulations are more complicat... Jeff Lucovsky

10/26/2024

01:17 PM Suricata Feature #845 (In Progress): Memory consumption in stats.log

Jeff Lucovsky