Issues: zeek/zeek
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
Track uptime, and report it as well as PID in stats & telemetry
Area: Logging
Area: Telemetry
Complexity: Modest
A cup of tea and an evening (or two) with Zeek.
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
#3730
opened May 9, 2024 by
ckreibich
Support non-MaxMind mmdb data layouts
Area: Config
Complexity: Modest
A cup of tea and an evening (or two) with Zeek.
Docs: required
New functionality or behavior that should be covered in our documentation
Implementation: Core
Implementation requires modification of the Zeek core
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
#3683
opened Apr 11, 2024 by
ckreibich
Automate updating of Mozilla CA and Google CT lists
Area: Build/Platform
Area: CI/Testing
Area: Release/Distribution
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
#3645
opened Mar 12, 2024 by
ckreibich
Add Implementation requires modification of the Zeek core
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
Broker::peer_websocket()
Area: Broker
Implementation: Core
#3597
opened Feb 2, 2024 by
ckreibich
Record fields with A cup of tea and an evening (or two) with Zeek.
Implementation: Core
Implementation requires modification of the Zeek core
Type: Bug 🐛
Unexpected behavior or output.
&default
constructors and expiration attributes may not trigger their timers, causing state leaks
Area: Scripting
Complexity: Modest
#3513
opened Dec 16, 2023 by
ckreibich
Don't Implementation requires modification of the Zeek core
Type: Enhancement
FatalError
on pcap read errors
Area: Packet Capture
Implementation: Core
#3497
opened Dec 8, 2023 by
ckreibich
Spicy-level enum docstrings should be visible in zeekygen-generated docs
Area: Documentation
Complexity: Modest
A cup of tea and an evening (or two) with Zeek.
Implementation: Core
Implementation requires modification of the Zeek core
Type: Enhancement
#3446
opened Nov 8, 2023 by
ckreibich
Deprecate specifying ports in Spicy EVT files
Area: Spicy
#3442
by ckreibich
was closed Mar 18, 2024
Update Implementation requires Zeek scripting
Type: Enhancement
Tunnel::max_depth
default to reflect modern encapsulation environments
Area: Protocol Analysis
Implementation: Scripts
#3439
by ckreibich
was closed Jan 11, 2024
TLS parser rewrite in Spicy
Area: Performance
Area: Protocol Analysis
Complexity: Substantial
For the stout of heart.
Type: Project
A self-contained project — for example an intern project, a tech evaluation, or prototyping
#3438
opened Nov 7, 2023 by
ckreibich
Allow plugins to convey exta state in A cup of tea and an evening (or two) with Zeek.
Implementation: Core
Implementation requires modification of the Zeek core
Type: Enhancement
zeek::Packet
Area: Packet Capture
Area: Plugins
Complexity: Modest
#3431
opened Nov 4, 2023 by
ckreibich
Make Zeekygen warnings easier to filter
Area: Zeekygen
Implementation: Core
Implementation requires modification of the Zeek core
Type: Enhancement
#3430
opened Nov 4, 2023 by
ckreibich
Full HTTP upgrade / WebSocket analysis support
Area: Protocol Analysis
Complexity: Substantial
For the stout of heart.
Implementation: Core
Implementation requires modification of the Zeek core
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
#3424
by ckreibich
was closed Jan 23, 2024
More flexible signature "event" interface
Area: Scripting
Area: Signatures
#3403
by ckreibich
was closed Dec 5, 2023
GRE-over-UDP support
Area: Protocol Analysis
good first issue
A good place to get started working with Zeek.
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
#3344
by ckreibich
was closed Oct 16, 2023
SMTP BDAT support
Area: Protocol Analysis
Implementation: Core
Implementation requires modification of the Zeek core
Type: Bug 🐛
Unexpected behavior or output.
#3264
by ckreibich
was closed Jan 12, 2024
Management framework: overhaul log management
Area: Cluster
Area: Logging
Complexity: Modest
A cup of tea and an evening (or two) with Zeek.
Docs: required
New functionality or behavior that should be covered in our documentation
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
Delayed log writes
Area: Logging
Complexity: Substantial
For the stout of heart.
Docs: required
New functionality or behavior that should be covered in our documentation
Docs: updated
Implementation: Core
Implementation requires modification of the Zeek core
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
#3232
by ckreibich
was closed Dec 1, 2023
Regression: Zeek 6 writes
__bro_plugin__
without trailing newline
#3175
by ckreibich
was closed Sep 27, 2023
warning: Dictionary::Remove() possibly caused iterator invalidation
with some file analyzer constellations
Implementation: Core
Node naming support for the cluster framework
Area: Cluster
Complexity: Modest
A cup of tea and an evening (or two) with Zeek.
Implementation: Core
Implementation requires modification of the Zeek core
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
#2729
opened Jan 27, 2023 by
ckreibich
Multi-logger cluster support for ASCII logs
Area: Logging
Implementation: Core
Implementation requires modification of the Zeek core
Implementation: Scripts
Implementation requires Zeek scripting
Type: Enhancement
The DNS analyzer should break the 3-bit header Z field into Z / DC / AD bits
Area: Protocol Analysis
good first issue
A good place to get started working with Zeek.
Implementation: Core
Implementation requires modification of the Zeek core
Implementation: Scripts
Implementation requires Zeek scripting
#2672
by ckreibich
was closed Mar 14, 2023
Previous Next
ProTip!
Add no:assignee to see everything that’s not assigned.