Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

install zeek parser by zkg command #145

Merged
merged 2 commits into from
Dec 13, 2023
Merged

install zeek parser by zkg command #145

merged 2 commits into from
Dec 13, 2023

Conversation

helenwangjia
Copy link
Contributor

@helenwangjia helenwangjia commented Oct 25, 2023
edited
Loading

close #122
close #147
zeek-parser-CCLinkFieldBasicとzeek-parser-CCLinkField-CCLinkControlはzkgでinstallできるように変更しました。
CIFS_B、DHCPV6、MYDHCP、NBNS、SSDPスクリプトもzkgでパッケージインストールするように変更しました。

検証:
OsecT20で

...
中略
Step 28/45 : RUN zkg refresh &&     zkg install --force --skiptest     icsnpp-modbus     icsnpp-bacnet     zeek/corelight/zeek-long-connections     zeek-af_packet-plugin     zeek-parser-CCLinkFieldBasic     zeek-parser-CCLinkField-CCLinkControl     zeek-parser-CIFS-COM     zeek-parser-CIFS-NBNS-COM     zeek-parser-DHCPv4-COM     zeek-parser-DHCPv6-COM     zeek-parser-SSDP-COM
 ---> Running in d40ab683c376
Refresh package source: zeek
        No membership changes
Refresh installed packages
        No new outdated packages
Installing "zeek/nttcom/zeek-parser-SSDP-COM"
Installed "zeek/nttcom/zeek-parser-SSDP-COM" (main)
Loaded "zeek/nttcom/zeek-parser-SSDP-COM"
Installing "zeek/nttcom/zeek-parser-DHCPv6-COM"
Installed "zeek/nttcom/zeek-parser-DHCPv6-COM" (main)
Loaded "zeek/nttcom/zeek-parser-DHCPv6-COM"
Installing "zeek/nttcom/zeek-parser-DHCPv4-COM"
Installed "zeek/nttcom/zeek-parser-DHCPv4-COM" (main)
Loaded "zeek/nttcom/zeek-parser-DHCPv4-COM"
Installing "zeek/nttcom/zeek-parser-CIFS-NBNS-COM"
Installed "zeek/nttcom/zeek-parser-CIFS-NBNS-COM" (main)
Loaded "zeek/nttcom/zeek-parser-CIFS-NBNS-COM"
Installing "zeek/nttcom/zeek-parser-CIFS-COM"
Installed "zeek/nttcom/zeek-parser-CIFS-COM" (main)
Loaded "zeek/nttcom/zeek-parser-CIFS-COM"
Installing "zeek/nttcom/zeek-parser-CCLinkField-CCLinkControl"
Installed "zeek/nttcom/zeek-parser-CCLinkField-CCLinkControl" (main)
Loaded "zeek/nttcom/zeek-parser-CCLinkField-CCLinkControl"
Installing "zeek/nttcom/zeek-parser-CCLinkFieldBasic"
Installed "zeek/nttcom/zeek-parser-CCLinkFieldBasic" (main)
Loaded "zeek/nttcom/zeek-parser-CCLinkFieldBasic"
...
Successfully built bb776fffb3e9
Successfully tagged cron:comtest01-sensor-recovery

後は、該当protocolのpcapファイルを流して、logが生成されていることを確認しました。

@helenwangjia helenwangjia changed the title install zeek parser with zkg install install zeek parser by zkg command Oct 26, 2023
@helenwangjia helenwangjia mentioned this pull request Nov 1, 2023
Merged
@takuma0121 takuma0121 merged commit 817cf3d into main Dec 13, 2023
4 checks passed
@takuma0121 takuma0121 deleted the update-zkg-install-packages branch December 13, 2023 02:17
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@takuma0121 takuma0121 takuma0121 approved these changes

@nbhgytzheng nbhgytzheng Awaiting requested review from nbhgytzheng

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
2 participants
@helenwangjia @takuma0121