Open Information Security Foundation

04/09/2025

11:39 AM Suricata Feature #7654 (New): detect: rule keywords for matching on file hashes

Matching on a list of files hash is convenient but it requires to ship multiple files which is not convenient in auto... Eric Leblond

03/30/2025

03:10 PM Suricata Feature #7635 (In Review): eve: include transaction count

Transaction Id or transaction count is a interesting information when trying to understand the nature of a flow.
B... Eric Leblond

01/19/2025

09:29 PM Suricata Bug #7509 (In Review): Invalid macros in decode-tcp.h

Eric Leblond

09:27 PM Suricata Bug #7509 (In Review): Invalid macros in decode-tcp.h

Some macros are present in decode-tcp.h but they have not been update to the l4 approach. Eric Leblond

01/03/2025

08:27 PM Suricata Optimization #7474 (Closed): Pcap file mode locking on time synchronization

Closing as some work has been done on the subject by Victor. Eric Leblond

09:48 AM Suricata Optimization #7474 (Closed): Pcap file mode locking on time synchronization

When reading a pcap file, we have a contention point on TmThreadsSetThreadTimestamp():
... Eric Leblond

09:51 AM Suricata Bug #7475 (In Review): Problem in HashTable remove function

When the HashTableRemove function is called and when there is only one item in the bucket list, then the compare func... Eric Leblond

12/27/2024

08:16 AM Suricata Task #3837 (In Review): Investigate clang-tidy usage to enforce coding standards

Eric Leblond

11/28/2024

10:42 PM Suricata Bug #7419: Incomplete logging message

Jason Ish wrote in #note-1:
> Something like 8k plus some would be OK I think. I guess we'd want to have enough to ... Eric Leblond

10:30 PM Suricata Bug #7419 (New): Incomplete logging message

When logging the engine message in the JSON format, we expect to have valid JSON messages so the parsing can be handl... Eric Leblond