[Bro] binpac to bro script types
Bortoli, Tomas
tomas.bortoli at sit.fraunhofer.de
Fri May 26 03:06:39 PDT 2017
Hi all,
I'm writing a plug-in for Bro and I'm having troubles to pass types like timestamps from binpac code to the generated bro events.
I snooped the code under `src/analyzer/protocol/krb/krb-analyzer.pac` to check out how they build data structures for Bro scripts and that works.
But when it comes to pass a uint[8] into a bro timestamp, I don't know how to do it.
Any idea?
Kind regards
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20170526/54404418/attachment.html
More information about the Bro
mailing list