]> git.ipfire.org Git - thirdparty/suricata-verify.git/commit
projects / thirdparty / suricata-verify.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 2ad3bca) | patch
tests: test flow droped but applayer event logged 1221/head
authorJuliana Fajardini <jufajardini@oisf.net>
Mon, 22 Aug 2022 18:29:03 +0000 (15:29 -0300)
committerJuliana Fajardini <jufajardini@oisf.net>
Tue, 30 May 2023 13:02:02 +0000 (10:02 -0300)
commit333f167df4d344ba3ba152f00a650a051c0f3852
tree6db7a0065a147d55316d23d230e6a736c4ebba5atree
parent2ad3bcaa739fd0a5846fa3c9472c1e180e4b72cdcommit | diff
tests: test flow droped but applayer event logged

It seems that Suricata will log an applayer event for a dropped flow,
for the second packet of the flow. This test demonstrates such behavior,
so we can investigate it.

Related to
Task #5510
24 files changed:
tests/bug-5802/README.md [new file with mode: 0644] blob
tests/bug-5802/suricata.yaml [new file with mode: 0644] blob
tests/bug-5802/test.rules [new file with mode: 0644] blob
tests/bug-5802/test.yaml [new file with mode: 0644] blob
tests/detect-udp-flow-rule-01/suricata.yaml [new file with mode: 0644] blob
tests/detect-udp-flow-rule-02/suricata.yaml [new file with mode: 0644] blob
tests/detect-udp-flow-rule-02/test.rules [new file with mode: 0644] blob
tests/detect-udp-flow-rule-02/test.yaml [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-dcerpc/README.md [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-dcerpc/input.pcap [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-dcerpc/suricata.yaml [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-dcerpc/test.rules [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-dcerpc/test.yaml [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-http/README.md [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-http/input-http-ACK.pcap [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-http/suricata.yaml [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-http/test.rules [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-http/test.yaml [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-smb/README.md [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-smb/input.pcap [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-smb/suricata.yaml [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-smb/test.rules [new file with mode: 0644] blob
tests/droped-flow-applayer-event-logged-smb/test.yaml [new file with mode: 0644] blob
tests/threshold/threshold-config-rate-filter-drop-hostdst/test.yaml diff | blob | blame | history
Mirror of https://github.com/OISF/suricata-verify.git