Hadiqa Alamdar Bukhari - Open Information Security Foundation

HA Hadiqa Alamdar Bukhari

	open	closed	Total
Assigned issues	0	6	6
Reported issues	0	1	1

Project	Roles	Registered on
Suricata	Developer	10/03/2023
Suricata-Update	Developer	10/03/2023

HA 11:22 AM Suricata Feature #6666 (In Progress): dns: add keyword for dns rrtype: dns.rrtype: Hadiqa Alamdar Bukhari

HA 11:28 AM Suricata Feature #6666 (Closed): dns: add keyword for dns rrtype: dns.rrtype: The rtype field is much like opcode or rcode. Hadiqa Alamdar Bukhari

HA 06:48 PM Suricata Feature #5642: DNS: parity between log fields and detection: Jason Ish wrote in #note-8:
> Hadiqa Alamdar Bukhari wrote in #note-7:
> ...
Got it, thanks!
Hadiqa Alamdar Bukhari
HA 04:53 PM Suricata Feature #5642: DNS: parity between log fields and detection: The fields which have been implemented include:
- dns.query
- dns.opcode
- dns.rcode : in progress
- dns.answer.name
- dns.query.name
Awaiting further instructions on which fields to implement first. Hadiqa Alamdar Bukhari
HA 04:46 PM Suricata Feature #5642: DNS: parity between log fields and detection: After comparing the dns fields in rust/src/dns/log.rs and schema.json files I've found the following fields to be missing in the schema.json file:
* aa boolean field is missing in the answer array. It is present in dns object properties... Hadiqa Alamdar Bukhari

HA 10:15 PM Suricata Task #6356: detect/analyzer: add more details for the tcp.hdr keyword: https://docs.suricata.io/en/suricata-6.0.1/rules/http-keywords.html
https://docs.suricata.io/en/latest/rules/header-keywords.html#tcp-hdr
I've been looking into the code and documentation of the tcphdr keyword, and I had some questions... Hadiqa Alamdar Bukhari

Also available in: Atom