[Zeek] - HTTP extract files from wget

william de ping bill.de.ping at gmail.com
Wed Mar 11 03:44:21 PDT 2020


Hi everyone,

I've stumbled upon a weird issue using Zeek 3.0.
Parsing traffic that has a file transfer over http using wget does not
produce any file analysis.

I do see the get_file_handle event were it says ANALYZER::ANALYZER_HTTP but
no files.log is created and extract-all-files.zeek script does not produce
the transferred file.

am I missing something here ?

Thanks
B
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/zeek/attachments/20200311/04d29108/attachment.html 


More information about the Zeek mailing list