[Bro] A lower level interface
Shuai Hao
haoscs at gmail.com
Mon Oct 9 06:33:42 PDT 2017
Hi All,
I've seen many discussions referring to the Bro as an alternative of
libnids. I wonder that can we use the similar lower-level interface similar
to libnids in Bro (e.g., for the tcp assembly)? We would like to explore
the string features of packets, while keeping to leverage Bro's high-level
events.
Regards,
Shuai
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20171009/4dbf9127/attachment.html
More information about the Bro
mailing list