[Bro] peer_description in intel framework

Richmond, Ian (GE Corporate) ian.richmond at ge.com
Tue Sep 23 11:36:46 PDT 2014


Awesome thanks!





On 9/23/14, 12:30 PM, "Seth Hall" <seth at icir.org> wrote:

>
>On Sep 23, 2014, at 11:48 AM, Seth Hall <seth at icir.org> wrote:
>
>> It would be easy to add that into the intel framework.  I'll do a
>>commit now that adds it (but it will only be in the master branch of our
>>git repository for now).
>
>I lied.  It's in fastpath instead of master, but we'll make sure and get
>it there soon.  The only change is that in the seen record, you will have
>a field named "node" that will have the name of the node where the match
>happened.
>
>  .Seth
>
>--
>Seth Hall
>International Computer Science Institute
>(Bro) because everyone has a network
>http://www.bro.org/
>





More information about the Bro mailing list