Expand description
Suricata is a network intrusion prevention and monitoring engine.
Suricata is a hybrid C and Rust application. What is found here are the components written in Rust.
Re-exports§
pub use suricata_lua_sys;
Modules§
- applayer
- Parser registration functions and common interface module.
- applayertemplate
- Application layer template parser and logger module.
- asn1
- ASN.1 parser module.
- bittorrent_
dht - BitTorrent DHT application layer, logger and parser module.
- bstr
- Functions for working with Bstr.
- common
- Utility library module for commonly used strings, hexadecimals and other elements.
- conf
- Module for retrieving configuration details.
- config
- Functions for working with config.
- connection
- Functions for working with connection.
- connection_
parser - Functions for working with connection parser.
- core
- This module exposes items from the core “C” code to Rust.
- dcerpc
- DCE/RPC protocol parser, logger and detection module.
- debug
- Logging and debug utilities, like util-debug.c.
- detect
- Module for rule parsing.
- dhcp
- DHCP parser, detection and logger module.
- direction
- dns
- DNS parser, detection, logger and application layer module.
- enip
- Application layer enip parser and logger module.
- feature
- Rust bindings to the “feature” API.
- ffi
- Module that exposes C bindings to the Suricata Rust library.
- filecontainer
- This module handles file container operations (open, append, close).
- filetracker
- Gap handling and Chunk-based file transfer tracker module.
- flow
- frames
- Module for bindings to the Suricata C frame API.
- ftp
- FTP parser and application layer module.
- handshake
- header
- Functions for working with headers.
- http2
- HTTP/2 parser, detection, logger and application layer module.
- ike
- IKE parser, detection, logger and application layer module.
- ja4
- jsonbuilder
- Module for building JSON documents.
- kerberos
- Kerberos parser wrapper module.
- krb
- Kerberos-v5 application layer, logger and detection module.
- ldap
- log
- Functions for working with logs.
- lua
- Lua wrapper module.
- lzma
- lzma decompression utility module.
- mdns
- mDNS parser, detection, logger and application layer module.
- mime
- MIME protocol parser module.
- modbus
- Modbus application layer, logger, parser and detection module.
- mqtt
- MQTT application layer, detection, logger and parser module.
- nfs
- NFS application layer, parser, logger module.
- ntp
- NTP application layer and parser module.
- pgsql
- PostgreSQL parser, logger and application layer module.
- plugin
- Plugin utility module.
- pop3
- Application layer pop3 parser and logger module.
- quic
- QUIC application layer, parser, detection and logger module.
- rdp
- RDP parser, logger and application layer module.
- rfb
- RFB protocol parser, logger and detection module.
- sdp
- sip
- SIP protocol parser, detection and logger module.
- smb
- SMB application layer, detection, logger and parser module.
- snmp
- SNMP application layer, parser, detection and logger module.
- ssh
- SSH application layer, logger, detection and parser module.
- telnet
- Telnet application layer and parser module.
- tftp
- TFTP parser, logger and application layer module.
- tls_
version - transaction
- Functions for working with transactions.
- uri
- Functions for working with request uri.
- util
- Utility module.
- utils
- websocket
- Application layer websocket parser and logger module.
- x509
- Module for SSL/TLS X.509 certificates parser and decoder.
Macros§
- SCFatal
Error OnInit - SCLog
Config - SCLog
Debug - SCLog
Error - SCLog
Info - SCLog
Notice - SCLog
Perf - SCLog
Warning - build_
slice - Create a slice, given a buffer and a length
- cast_
pointer - Cast pointer to a variable, as a mutable reference to an object
- debug_
validate_ bug_ on - debug_
validate_ fail - do_log
- export_
state_ data_ get - export_
tx_ data_ get - function
- unwrap_
or_ return
Functions§
- htp_
free_ ⚠cstring - Free rust allocated cstring
- htp_
get_ version - Returns the LibHTP version string.