[Oisf-devel] Extracting file from stream
Victor Julien
victor at inliniac.net
Thu Jan 21 07:38:55 UTC 2010
The ISC post lists quite a few tools that already support extracting
files from pcaps. Is there something new and unsupported by those tools
you are looking for in Suricata?
Will Metcalf wrote:
> Jerry,
>
> We will keep this in mind, although I think stuff like this may belong
> in post-analysis. That being said does anybody have an interest in
> flow/full traffic capture as an option?
>
> Regards,
>
> Will
>
> On Wed, Jan 20, 2010 at 4:22 PM, Jerry <jerry at cybercave.cz
> <mailto:jerry at cybercave.cz>> wrote:
>
> Hi development team/list,
> I have a question regarding features development. Are you planning to
> include extraction files from packet stream into Suricata?
>
> It would be nice to have something that covers this issue:
> http://isc.sans.org/diary.html?storyid=6961
>
> Thank you very much in advance
>
> Jerry
>
> --
> Defending network against intrusion is like trying to keep a squid
> inside a mesh bag. Question is, who will give up first :)
>
> _______________________________________________
> Oisf-devel mailing list
> Oisf-devel at openinfosecfoundation.org
> <mailto:Oisf-devel at openinfosecfoundation.org>
> http://lists.openinfosecfoundation.org/mailman/listinfo/oisf-devel
>
>
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Oisf-devel mailing list
> Oisf-devel at openinfosecfoundation.org
> http://lists.openinfosecfoundation.org/mailman/listinfo/oisf-devel
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-devel
mailing list