]> git.ipfire.org Git - thirdparty/suricata.git/commit
projects / thirdparty / suricata.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 90cf59a) | patch
detect: add email.from
authorAlice Akaki <akakialice@gmail.com>
Sat, 15 Mar 2025 02:32:54 +0000 (22:32 -0400)
committerVictor Julien <victor@inliniac.net>
Thu, 20 Mar 2025 12:12:01 +0000 (13:12 +0100)
commit90aab0d62fe74cd299af6d0182941798e863bb4e
tree20f4a9defc3aa03d30c081f0bf16d86349e3f946tree
parent90cf59ac7167d928ae8f09cfb1d5085038de3b52commit | diff
detect: add email.from

email.from matches on MIME EMAIL FROM
This keyword maps to the EVE field email.from
It is a sticky buffer
Supports prefiltering

Ticket: #7592
doc/userguide/rules/email-keywords.rst [new file with mode: 0644] blob
doc/userguide/rules/index.rst diff | blob | blame | history
rust/src/mime/detect.rs [new file with mode: 0644] blob
rust/src/mime/mod.rs diff | blob | blame | history
src/Makefile.am diff | blob | blame | history
src/detect-email.c [new file with mode: 0644] blob
src/detect-email.h [new file with mode: 0644] blob
src/detect-engine-register.c diff | blob | blame | history
Mirror of https://github.com/OISF/suricata.git