[Zeek] how to specify ip address through variables
rahul rakesh
rahulbroids at gmail.com
Tue Nov 19 04:45:15 PST 2019
Hi all,
First Question:
------------------
How I can specify the ip address of src-ip/dst-ip <cmp> <address-list>
through variable like $External_Net like in snort signatures.
Suppose same ip address is there in many signatures.How can I define it at
one place.
Second Q
-------------
after event is generated,then how can i call either c++ code or python code
from bro scripts.If it is possible ,can you provide me link.
(Some where i read that through bro scripts, we can call python or c++ code)
Third Q
-----------
Currently Zeek is used at which super computing facility.Is it used at
NERSC center. Just to know that. You can provide me link also.
Thank you so much.
Ravi
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/zeek/attachments/20191119/65624c01/attachment-0001.html
More information about the Zeek
mailing list