Home Explore Help
Sign In
pandora-research
/
suricata
Watch 1
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: master
Branches Tags
suricata
/
rules
/
quic-events.rules

quic-events.rules 544 B
Permalink History Raw

123456789 
  1. # QUIC app-layer event rules.
    2. 

  2. #
    3. 

  3. # These SIDs fall in the 2231000+ range. See:
    4. 

  4. #    http://doc.emergingthreats.net/bin/view/Main/SidAllocation and
    5. 

  5. #    https://redmine.openinfosecfoundation.org/projects/suricata/wiki/AppLayer
    6. 

  6. 

  7. alert quic any any -> any any (msg:"SURICATA QUIC failed decrypt"; app-layer-event:quic.failed_decrypt; classtype:protocol-command-decode; sid:2231000; rev:1;)
    8. 

  8. alert quic any any -> any any (msg:"SURICATA QUIC error on data"; app-layer-event:quic.error_on_data; classtype:protocol-command-decode; sid:2231001; rev:1;)
    9. 

  9.