Project

General

Profile

Actions
Copy link

Feature #6648

closed

Task #6644: tracking: detect: integer as first-class support

detect: integer: support bitmasks

Added by Philippe Antoine 11 months ago. Updated 9 months ago.

Status:
Closed
Priority:
Normal
Assignee:
Philippe Antoine
Target version:
8.0.0-beta1
Effort:
Difficulty:
Label:

Description

Bitflags/Bitstrings are just an integer where numerical comparison does not make sense

But we should add an operator & with two values : a mask, and a value to compare.
This would allow to check for a set of flags and their values

Related issues 1 (1 open0 closed)

Related to Suricata - Feature #6724: detect: review existing keywords for usage of bitflagsIn ProgressPhilippe AntoineActions
Actions
Copy link

Also available in: Atom PDF