Project

General

Profile

Actions

Task #2685

open

Task #4763: tracking: Suricon brainstorms

SuriCon 2018 brainstorm

Added by Victor Julien almost 6 years ago. Updated over 2 years ago.

Status:
Assigned
Priority:
Normal
Assignee:
Target version:
Effort:
Difficulty:
Label:

Description

Meta ticket. Add relations to this ticket for the tickets discussed at SuriCon or created after SuriCon brainstorm.

2017 edition: #2309


Related issues 29 (12 open17 closed)

Related to Suricata - Feature #2684: Add JA3SClosedMats KlepslandActions
Related to Suricata - Feature #2563: Add dump of all headers in http eve-logClosedMaurizio AbbaActions
Related to Suricata - Task #2693: tracking: libsuricataIn ProgressJason IshActions
Related to Suricata - Feature #2561: Add possibility for smtp raw extractionClosedMaurizio AbbaActions
Related to Suricata - Feature #2409: Push signatures without reloading the entire set.RejectedCommunity TicketActions
Related to Suricata - Feature #2694: thresholding: feature parity between global and per-rule optionsClosedTodd MortimerActions
Related to Suricata - Feature #2695: websocket supportClosedPhilippe AntoineActions
Related to Suricata - Feature #2689: http: Normalized HTTP client body bufferClosedJeff LucovskyActions
Related to Suricata - Feature #2696: http: implement parser in rustIn ProgressPhilippe AntoineActions
Related to Suricata - Feature #2486: prefilter/fast_pattern logic for flowbitsIn ProgressVictor JulienActions
Related to Suricata - Feature #2697: prefilter support for stream_sizeClosedPhilippe AntoineActions
Related to Suricata - Feature #2698: hassh and hasshServer for ssh fingerprintingClosedVadym MalakhatkoActions
Related to Suricata - Feature #2282: event log aka weird.logClosedJeff LucovskyActions
Related to Suricata - Task #2278: tracking: failing betterNewOISF DevActions
Related to Suricata - Documentation #2699: document all eve record types and fieldsClosedSascha SteinbissActions
Related to Suricata - Feature #2700: ja3/ja3s functionality for IKEv2AssignedPierre ChifflierActions
Related to Suricata - Feature #2701: flow: counter for allocations at runtimeNewCommunity TicketActions
Related to Suricata - Feature #385: Configuration option to log all known (pcap) data for a stream when an alert firesClosedCommunity TicketActions
Related to Suricata - Feature #2318: matching on large amounts of data with dynamic updatesClosedVictor JulienActions
Related to Suricata - Task #2313: tracking: save & restore state when suricata restartsNewOISF DevActions
Related to Suricata - Feature #2308: threshold/suppress by http_hostAssignedTodd MortimerActions
Related to Suricata - Feature #2283: turn content modifiers into 'sticky buffers'ClosedOISF DevActions
Related to Suricata - Feature #2713: protocol detection w/o protocol parsingClosedPierre ChifflierActions
Related to Suricata - Feature #2754: JA3 and JA3S - sets / reputationClosedVictor JulienActions
Related to Suricata - Feature #2755: vendor id / vid keyword to give rulesets unique sid rangesNewOISF DevActions
Related to Suricata - Feature #2756: rules: input in json formatNewOISF DevActions
Related to Suricata - Task #2757: improve protocol detectionIn ReviewPhilippe AntoineActions
Related to Suricata - Feature #2758: intel / reputation matching on arbitrary dataClosedVictor JulienActions
Related to Suricata - Feature #2759: iprep: more granularityNewCommunity TicketActions
Actions #1

Updated by Victor Julien almost 6 years ago

Actions #2

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2563: Add dump of all headers in http eve-log added
Actions #3

Updated by Victor Julien almost 6 years ago

  • Related to Task #2693: tracking: libsuricata added
Actions #4

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2561: Add possibility for smtp raw extraction added
Actions #5

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2409: Push signatures without reloading the entire set. added
Actions #6

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2694: thresholding: feature parity between global and per-rule options added
Actions #7

Updated by Victor Julien almost 6 years ago

Actions #8

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2689: http: Normalized HTTP client body buffer added
Actions #9

Updated by Victor Julien almost 6 years ago

Actions #10

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2486: prefilter/fast_pattern logic for flowbits added
Actions #11

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2697: prefilter support for stream_size added
Actions #12

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2698: hassh and hasshServer for ssh fingerprinting added
Actions #13

Updated by Victor Julien almost 6 years ago

Actions #14

Updated by Victor Julien almost 6 years ago

  • Related to Task #2278: tracking: failing better added
Actions #15

Updated by Victor Julien almost 6 years ago

Actions #16

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2700: ja3/ja3s functionality for IKEv2 added
Actions #17

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2701: flow: counter for allocations at runtime added
Actions #18

Updated by Victor Julien almost 6 years ago

  • Related to Feature #385: Configuration option to log all known (pcap) data for a stream when an alert fires added
Actions #19

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2318: matching on large amounts of data with dynamic updates added
Actions #20

Updated by Victor Julien almost 6 years ago

  • Related to Task #2313: tracking: save & restore state when suricata restarts added
Actions #21

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2308: threshold/suppress by http_host added
Actions #22

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2283: turn content modifiers into 'sticky buffers' added
Actions #23

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2713: protocol detection w/o protocol parsing added
Actions #24

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2754: JA3 and JA3S - sets / reputation added
Actions #25

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2755: vendor id / vid keyword to give rulesets unique sid ranges added
Actions #26

Updated by Victor Julien almost 6 years ago

Actions #27

Updated by Victor Julien almost 6 years ago

  • Related to Task #2757: improve protocol detection added
Actions #28

Updated by Victor Julien almost 6 years ago

  • Related to Feature #2758: intel / reputation matching on arbitrary data added
Actions #29

Updated by Victor Julien almost 6 years ago

Actions #30

Updated by Andreas Herz over 5 years ago

  • Target version set to TBD
Actions #31

Updated by Victor Julien over 4 years ago

  • Tracker changed from Support to Task
  • Target version set to TBD
Actions #32

Updated by Victor Julien about 3 years ago

  • Parent task set to #4763
Actions #33

Updated by Victor Julien over 2 years ago

  • Status changed from New to Assigned
Actions

Also available in: Atom PDF