chrisforce1
commented
5 years ago Is this one complete? It's similar to https://github.com/alphasoc/nfr/issues/71.
Open chrisforce1 opened 5 years ago
chrisforce1
commented
5 years ago Is this one complete? It's similar to https://github.com/alphasoc/nfr/issues/71.
tg
commented
5 years ago HTTP support has been added since 1.7.0, but no TLS support yet.
chrisforce1
commented
5 years ago HTTP support has been added since 1.7.0, but no TLS support yet.
Renamed the issue, and it's essentially the same as https://github.com/alphasoc/nfr/issues/72.
As per email let's get this together and submitting JA3 hashes from
tls.jsonand HTTP requests fromhttp.jsonmaterial. NFR currently only supports DNS scoring for Suricata and we need to extend it.