[Oisf-devel] questions about add new rule engine keyword
Victor Julien
victor at inliniac.net
Fri May 20 16:34:16 UTC 2016
On 19-05-16 18:56, 沐廼咿dē蕜 wrote:
> i am new here , i have a question about add a new keyword such as
> http_raw_uri for SMB protocol, or port wireshark decoder to suricata.
> how can i start .
Have a look at the developer docs:
https://redmine.openinfosecfoundation.org/projects/suricata/wiki#Developers
a recent example of a new keyword added:
https://github.com/inliniac/suricata/pull/2085
Cheers,
Victor
--
---------------------------------------------
Victor Julien
http://www.inliniac.net/
PGP: http://www.inliniac.net/victorjulien.asc
---------------------------------------------
More information about the Oisf-devel
mailing list