NewAnalyzers
From BroWiki
Working on New Analyzers
The Bro systems relies heavily on protocol-level analysis and while it already supports a large number of application-layer protocols, there is always the need for more protocol analyzers. (An "analyzer" here is the combination of a low-level protocol parser inside Bro's event engine and a high-level policy-script which examines the protocol activity semantically.)
There are usually always various people working on new analyzers. To coordinate these efforts and avoid duplicating work, we're collecting these projects here. If you're working on an analyzer, please either let us now so that we can update the table or just go ahead an insert an entry yourself. (If you're not working on an analyzer, please consider doing so! :) Writing an analyzer is one of the best methods for contributing to the Bro system.)
| Protocol | Status | Contact | Link |
|---|---|---|---|
| BitTorrent | testing | nadi@cs.tu-berlin.de | |
| eMule | |||
| NetFlow | |||
| Overnet | |||
| Skype | |||
| SNMP |
Please fill in the missing information.
