policy/integration/barnyard2/main.bro

Barnyard2

This script lets Barnyard2 integrate with Bro. It receives alerts from Barnyard2 and logs them. In the future it will do more correlation and derive new notices from the alerts.

Namespace:Barnyard2
Imports:policy/integration/barnyard2/types.bro
Source File:/scripts/policy/integration/barnyard2/main.bro

Summary

Redefinitions

Log::ID: enum  

Functions

Barnyard2::pid2cid: function This can convert a Barnyard Barnyard2::PacketID value to a conn_id value in the case that you might need to index into an existing data structure elsewhere within Bro.

Detailed Interface

Types

Barnyard2::Info
Type:

record

ts: time &log

pid: Barnyard2::PacketID &log

alert: Barnyard2::AlertData &log

Functions

Barnyard2::pid2cid
Type:function (p: Barnyard2::PacketID) : conn_id

This can convert a Barnyard Barnyard2::PacketID value to a conn_id value in the case that you might need to index into an existing data structure elsewhere within Bro.


Table of Contents

Next Page

policy/integration/collective-intel/__load__.bro

Previous Page

policy/integration/barnyard2/types.bro

Copyright 2013, The Bro Project. Last updated on January 29, 2015. Created using Sphinx 1.3a0.