[Bro] CoAP
Seth Hall
seth at corelight.com
Thu Aug 23 07:56:48 PDT 2018
I'd put extra emphasis on the *may*. :) I haven't had time to dig into
it yet, but thanks for the pointers to the packet generator and the
protocol on the whole.
.Seth
On 13 Aug 2018, at 5:42, erik clark wrote:
> Seth (may) be looking at making the analyzer. You can find a packet
> generator here: https://github.com/mcollina/coap-packet. With the
> increase
> in number of IoT things on the network, or things acting like IoT
> devices
> (phones,
> soap dispensers, Fatema has examples on her network), having
> visibility
> into this is pretty important.
>
> On Sun, Aug 12, 2018 at 9:07 PM, Johanna Amann <johanna at icir.org>
> wrote:
>
>> Just to chime in - I have not heard of anyone creating a CoAP
>> analyzer for
>> Bro.
>>
>> Johanna
>>
>> On Mon, Jul 16, 2018 at 11:30:09AM -0400, erik clark wrote:
>>> Does anyone know if there is a Bro plugin for CoAP traffic detection
>>> and
>>> identification? We have the MQTT plugin for IoT bits, but we would
>>> like
>> to
>>> support CoAP as well. Thanks!
>>
>>> _______________________________________________
>>> Bro mailing list
>>> bro at bro-ids.org
>>> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
>>
>>
> _______________________________________________
> Bro mailing list
> bro at bro-ids.org
> http://mailman.ICSI.Berkeley.EDU/mailman/listinfo/bro
--
Seth Hall * Corelight, Inc * www.corelight.com
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20180823/21f345bf/attachment.html
More information about the Bro
mailing list