Expand description
Suricata is a network intrusion prevention and monitoring engine.
Suricata is a hybrid C and Rust application. What is found here are the components written in Rust.
Modules§
- Parser registration functions and common interface module.
- Application layer template parser and logger module.
- ASN.1 parser module.
- BitTorrent DHT application layer, logger and parser module.
- Utility library module for commonly used strings, hexadecimals and other elements.
- Module for retrieving configuration details.
- This module exposes items from the core “C” code to Rust.
- DCE/RPC protocol parser, logger and detection module.
- Module for rule parsing.
- DHCP parser, detection and logger module.
- DNS parser, detection, logger and application layer module.
- Rust bindings to the “feature” API.
- Module that exposes C bindings to the Suricata Rust library.
- This module handles file container operations (open, append, close).
- Gap handling and Chunk-based file transfer tracker module.
- Module for bindings to the Suricata C frame API.
- FTP parser and application layer module.
- HTTP/2 parser, detection, logger and application layer module.
- IKE parser, detection, logger and application layer module.
- Module for building JSON documents.
- Kerberos parser wrapper module.
- Kerberos-v5 application layer, logger and detection module.
- Logging utility module.
- lzma decompression utility module.
- MIME protocol parser module.
- Modbus application layer, logger, parser and detection module.
- MQTT application layer, detection, logger and parser module.
- NFS application layer, parser, logger module.
- NTP application layer and parser module.
- PostgreSQL parser, logger and application layer module.
- Plugin utility module.
- QUIC application layer, parser, detection and logger module.
- RDP parser, logger and application layer module.
- RFB protocol parser, logger and detection module.
- SIP protocol parser, detection and logger module.
- SMB application layer, detection, logger and parser module.
- SNMP application layer, parser, detection and logger module.
- SSH application layer, logger, detection and parser module.
- Telnet application layer and parser module.
- TFTP parser, logger and application layer module.
- Utility module.
- Module for SSL/TLS X.509 certificates parser and decoder.
Macros§
- Create a slice, given a buffer and a length
- Cast pointer to a variable, as a mutable reference to an object