[Bro-Dev] #861: Merging DNP3 Analyzer
Bro Tracker
bro at tracker.bro-ids.org
Thu Oct 4 08:07:33 PDT 2012
#861: Merging DNP3 Analyzer
---------------------+------------------------
Reporter: hui | Owner: robin
Type: Task | Status: assigned
Priority: Normal | Milestone: Bro2.2
Component: Bro | Version: git/master
Resolution: | Keywords: dnp3
---------------------+------------------------
Comment (by seth):
> I think what you said is the "incremental parsing"
> mentioned in the binpac paper. But actually, I am not quite sure how
this
> is implemented in the binpac. Can you please direct me to some codes
that
> I refer to?
It's actually not something you even need to worry about. Just
instantiate your binpac parser and begin passing data into it as you
receive it, the binpac parser will take care of the data even if it
doesn't receive the full PDU in one go.
--
Ticket URL: <http://tracker.bro-ids.org/bro/ticket/861#comment:12>
Bro Tracker <http://tracker.bro-ids.org/bro>
Bro Issue Tracker
More information about the bro-dev
mailing list