Package: base/frameworks/analyzer

The analyzer framework allows to dynamically enable or disable Bro’s protocol analyzers, as well as to manage the well-known ports which automatically activate a particular analyzer for new connections.

base/frameworks/analyzer/__load__.bro

base/frameworks/analyzer/main.bro

Framework for managing Bro’s protocol analyzers.

The analyzer framework allows to dynamically enable or disable analyzers, as well as to manage the well-known ports which automatically activate a particular analyzer for new connections.

Protocol analyzers are identified by unique tags of type Analyzer::Tag, such as Analyzer::ANALYZER_HTTP. These tags are defined internally by the analyzers themselves, and documented in their analyzer-specific description along with the events that they generate.


Table of Contents

    Copyright 2016, The Bro Project. Last updated on December 19, 2018. Created using Sphinx 1.8.2.