[Bro] Patch for BitTorrent analyzer

Martin Szydlowski msz at seclab.tuwien.ac.at
Mon Jun 22 18:26:09 PDT 2009

Hi Bro Team,

This is a patch that extends the functionality of the BitTorrent
analyzer added by Nadi Sarrar and Bernd Ager. In particular, it will
parse many popular extensions to the official protocol and also the
azureus messaging protocol which uses a different message format. The
patch has been thoroughly tested on off-line traces without causing
problems. I am attaching the patch for both the 1.4 release and the
latest svn revision (r6773) available and also a short description of
the changes.

greetz Martin

Martin Szydlowski
Vienna University of Technology
(temporary @ UC Santa Barbara)
Secure Systems Lab
e-mail: msz at iseclab.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: bro-1.4-bittorrent.patch.gz
Type: application/x-gzip
Size: 5869 bytes
Desc: not available
Url : http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20090622/4032a8b6/attachment.gz 
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: bro-bittorrent.changes
Url: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20090622/4032a8b6/attachment.ksh 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: bro-r6773-bittorrent.patch.gz
Type: application/x-gzip
Size: 5328 bytes
Desc: not available
Url : http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20090622/4032a8b6/attachment-0001.gz 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 260 bytes
Desc: OpenPGP digital signature
Url : http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20090622/4032a8b6/attachment.bin 

More information about the Bro mailing list