[Zeek] New Analyzer
Aaron Heller
deltah24 at gmail.com
Wed Jul 10 17:39:07 PDT 2019
Hi Justin,
I started off using the binpac_quickstart script, which I thought created
an external plugin?
Thanks,
Aaron
On Wed, Jul 10, 2019 at 8:20 PM Justin Azoff <justin at corelight.com> wrote:
> On Wed, Jul 10, 2019 at 8:16 PM Aaron Heller <deltah24 at gmail.com> wrote:
>
>> Maybe that and the analyzer not automatically firing off indicates an
>> issue with the bacnet script not being called appropriately? I'm grasping
>> at straws, so any thoughts are greatly appreciated!
>>
>
> I don't think you are loading the scripts at all.. which is also why the
> sigs aren't loaded.
>
> Are you building this as an in-tree analyzer or as an external plugin?
>
> --
> Justin
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/zeek/attachments/20190710/4c34f170/attachment.html
More information about the Zeek
mailing list