Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix tls mapping in suricata module #19494

Merged
merged 4 commits into from
Jul 2, 2020
Merged

Fix tls mapping in suricata module #19494

merged 4 commits into from
Jul 2, 2020

Commits on Jul 1, 2020

  1. Fix tls mapping in suricata module 

    - add suricata.eve.tls.ja3s.string field
- add suricata.eve.tls.ja3s.hash field
- add suricata.eve.tls.ja3.string field
- add suricata.eve.tls.ja3.hash field
- set default_field to false for suricata fields
- map suricata.eve.tls.ja3.hash to tls.client.ja3
- map suricata.eve.tls.ja3s.hash to tls.server.ja3s
- perform suricata.eve.tls.* -> tls.* mappings for all event types

Closes elastic#19492
    @leehinman
    leehinman committed Jul 1, 2020
    Configuration menu
    Copy the full SHA
    5ec28ba View commit details
    Browse the repository at this point in the history

  2. incorporate feedback

    @leehinman
    leehinman committed Jul 1, 2020
    Configuration menu
    Copy the full SHA
    2eb76ac View commit details
    Browse the repository at this point in the history

  3. Fix tests

    @leehinman
    leehinman committed Jul 1, 2020
    Configuration menu
    Copy the full SHA
    ff025dc View commit details
    Browse the repository at this point in the history

Commits on Jul 2, 2020

  1. Merge branch 'master' into leh_suricata_sdh

    @leehinman
    leehinman authored Jul 2, 2020
    Configuration menu
    Copy the full SHA
    ac70b36 View commit details
    Browse the repository at this point in the history