├── .gitignore ├── CMakeLists.txt ├── COPYING ├── LICENSE ├── Makefile ├── README ├── README.md ├── VERSION ├── cmake ├── FindLibBROTLI.cmake └── FindLibNGHTTP2.cmake ├── configure ├── configure.plugin ├── scripts ├── __load__.zeek ├── __preload__.zeek ├── http2 │ ├── __load__.zeek │ ├── dpd.sig │ ├── files.zeek │ ├── intel │ │ ├── __load__.zeek │ │ └── seen │ │ │ ├── http2-headers.zeek │ │ │ └── http2-url.zeek │ ├── main.zeek │ └── utils.zeek ├── init.zeek └── types.zeek ├── src ├── HTTP2.cc ├── HTTP2.h ├── HTTP2_Frame.cc ├── HTTP2_Frame.h ├── HTTP2_FrameReassembler.cc ├── HTTP2_FrameReassembler.h ├── HTTP2_HeaderStorage.cc ├── HTTP2_HeaderStorage.h ├── HTTP2_Stream.cc ├── HTTP2_Stream.h ├── Plugin.cc ├── Plugin.h ├── debug.h ├── events.bif └── http2.bif ├── tests ├── Baseline │ ├── http2.load_analyzer │ │ └── output │ ├── http2.load_intel │ │ └── output │ └── http2.show-plugin │ │ └── output ├── Makefile ├── Scripts │ ├── diff-remove-timestamps │ └── get-zeek-env ├── btest.cfg ├── http2 │ ├── load_analyzer.zeek │ ├── load_intel.zeek │ └── show-plugin.zeek └── random.seed └── zkg.meta /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/.gitignore -------------------------------------------------------------------------------- /CMakeLists.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/CMakeLists.txt -------------------------------------------------------------------------------- /COPYING: -------------------------------------------------------------------------------- 1 | See "LICENSE" file 2 | -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/LICENSE -------------------------------------------------------------------------------- /Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/Makefile -------------------------------------------------------------------------------- /README: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/README -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/README.md -------------------------------------------------------------------------------- /VERSION: -------------------------------------------------------------------------------- 1 | 0.6.0 2 | -------------------------------------------------------------------------------- /cmake/FindLibBROTLI.cmake: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/cmake/FindLibBROTLI.cmake -------------------------------------------------------------------------------- /cmake/FindLibNGHTTP2.cmake: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/cmake/FindLibNGHTTP2.cmake -------------------------------------------------------------------------------- /configure: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/configure -------------------------------------------------------------------------------- /configure.plugin: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/configure.plugin -------------------------------------------------------------------------------- /scripts/__load__.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/__load__.zeek -------------------------------------------------------------------------------- /scripts/__preload__.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/__preload__.zeek -------------------------------------------------------------------------------- /scripts/http2/__load__.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/http2/__load__.zeek -------------------------------------------------------------------------------- /scripts/http2/dpd.sig: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/http2/dpd.sig -------------------------------------------------------------------------------- /scripts/http2/files.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/http2/files.zeek -------------------------------------------------------------------------------- /scripts/http2/intel/__load__.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/http2/intel/__load__.zeek -------------------------------------------------------------------------------- /scripts/http2/intel/seen/http2-headers.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/http2/intel/seen/http2-headers.zeek -------------------------------------------------------------------------------- /scripts/http2/intel/seen/http2-url.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/http2/intel/seen/http2-url.zeek -------------------------------------------------------------------------------- /scripts/http2/main.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/http2/main.zeek -------------------------------------------------------------------------------- /scripts/http2/utils.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/http2/utils.zeek -------------------------------------------------------------------------------- /scripts/init.zeek: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /scripts/types.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/scripts/types.zeek -------------------------------------------------------------------------------- /src/HTTP2.cc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2.cc -------------------------------------------------------------------------------- /src/HTTP2.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2.h -------------------------------------------------------------------------------- /src/HTTP2_Frame.cc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2_Frame.cc -------------------------------------------------------------------------------- /src/HTTP2_Frame.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2_Frame.h -------------------------------------------------------------------------------- /src/HTTP2_FrameReassembler.cc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2_FrameReassembler.cc -------------------------------------------------------------------------------- /src/HTTP2_FrameReassembler.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2_FrameReassembler.h -------------------------------------------------------------------------------- /src/HTTP2_HeaderStorage.cc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2_HeaderStorage.cc -------------------------------------------------------------------------------- /src/HTTP2_HeaderStorage.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2_HeaderStorage.h -------------------------------------------------------------------------------- /src/HTTP2_Stream.cc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2_Stream.cc -------------------------------------------------------------------------------- /src/HTTP2_Stream.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/HTTP2_Stream.h -------------------------------------------------------------------------------- /src/Plugin.cc: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/Plugin.cc -------------------------------------------------------------------------------- /src/Plugin.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/Plugin.h -------------------------------------------------------------------------------- /src/debug.h: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/debug.h -------------------------------------------------------------------------------- /src/events.bif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/events.bif -------------------------------------------------------------------------------- /src/http2.bif: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/src/http2.bif -------------------------------------------------------------------------------- /tests/Baseline/http2.load_analyzer/output: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/Baseline/http2.load_intel/output: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /tests/Baseline/http2.show-plugin/output: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/Baseline/http2.show-plugin/output -------------------------------------------------------------------------------- /tests/Makefile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/Makefile -------------------------------------------------------------------------------- /tests/Scripts/diff-remove-timestamps: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/Scripts/diff-remove-timestamps -------------------------------------------------------------------------------- /tests/Scripts/get-zeek-env: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/Scripts/get-zeek-env -------------------------------------------------------------------------------- /tests/btest.cfg: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/btest.cfg -------------------------------------------------------------------------------- /tests/http2/load_analyzer.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/http2/load_analyzer.zeek -------------------------------------------------------------------------------- /tests/http2/load_intel.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/http2/load_intel.zeek -------------------------------------------------------------------------------- /tests/http2/show-plugin.zeek: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/http2/show-plugin.zeek -------------------------------------------------------------------------------- /tests/random.seed: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/tests/random.seed -------------------------------------------------------------------------------- /zkg.meta: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/MITRECND/bro-http2/HEAD/zkg.meta --------------------------------------------------------------------------------