2010-08-14 14:30:41 +02:00
|
|
|
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
|
|
|
|
<html xmlns="http://www.w3.org/1999/xhtml">
|
|
|
|
<head>
|
|
|
|
<meta http-equiv="Content-Type" content="text/xhtml;charset=UTF-8"/>
|
|
|
|
<title>Snort AI preprocessor module: Data Fields</title>
|
|
|
|
<link href="tabs.css" rel="stylesheet" type="text/css"/>
|
|
|
|
<link href="search/search.css" rel="stylesheet" type="text/css"/>
|
|
|
|
<script type="text/javaScript" src="search/search.js"></script>
|
|
|
|
<link href="doxygen.css" rel="stylesheet" type="text/css"/>
|
|
|
|
</head>
|
|
|
|
<body onload='searchBox.OnSelectItem(0);'>
|
|
|
|
<!-- Generated by Doxygen 1.7.1 -->
|
|
|
|
<script type="text/javascript"><!--
|
|
|
|
var searchBox = new SearchBox("searchBox", "search",false,'Search');
|
|
|
|
--></script>
|
|
|
|
<div class="navigation" id="top">
|
|
|
|
<div class="tabs">
|
|
|
|
<ul class="tablist">
|
|
|
|
<li><a href="index.html"><span>Main Page</span></a></li>
|
|
|
|
<li><a href="modules.html"><span>Modules</span></a></li>
|
|
|
|
<li class="current"><a href="annotated.html"><span>Data Structures</span></a></li>
|
|
|
|
<li><a href="files.html"><span>Files</span></a></li>
|
|
|
|
<li id="searchli">
|
|
|
|
<div id="MSearchBox" class="MSearchBoxInactive">
|
|
|
|
<span class="left">
|
|
|
|
<img id="MSearchSelect" src="search/mag_sel.png"
|
|
|
|
onmouseover="return searchBox.OnSearchSelectShow()"
|
|
|
|
onmouseout="return searchBox.OnSearchSelectHide()"
|
|
|
|
alt=""/>
|
|
|
|
<input type="text" id="MSearchField" value="Search" accesskey="S"
|
|
|
|
onfocus="searchBox.OnSearchFieldFocus(true)"
|
|
|
|
onblur="searchBox.OnSearchFieldFocus(false)"
|
|
|
|
onkeyup="searchBox.OnSearchFieldChange(event)"/>
|
|
|
|
</span><span class="right">
|
|
|
|
<a id="MSearchClose" href="javascript:searchBox.CloseResultsWindow()"><img id="MSearchCloseImg" border="0" src="search/close.png" alt=""/></a>
|
|
|
|
</span>
|
|
|
|
</div>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
</div>
|
|
|
|
<div class="tabs2">
|
|
|
|
<ul class="tablist">
|
|
|
|
<li><a href="annotated.html"><span>Data Structures</span></a></li>
|
|
|
|
<li><a href="classes.html"><span>Data Structure Index</span></a></li>
|
|
|
|
<li class="current"><a href="functions.html"><span>Data Fields</span></a></li>
|
|
|
|
</ul>
|
|
|
|
</div>
|
|
|
|
<div class="tabs2">
|
|
|
|
<ul class="tablist">
|
|
|
|
<li class="current"><a href="functions.html"><span>All</span></a></li>
|
|
|
|
<li><a href="functions_vars.html"><span>Variables</span></a></li>
|
|
|
|
</ul>
|
|
|
|
</div>
|
2010-08-16 22:09:34 +02:00
|
|
|
<div class="tabs3">
|
|
|
|
<ul class="tablist">
|
|
|
|
<li><a href="#index_a"><span>a</span></a></li>
|
|
|
|
<li><a href="#index_c"><span>c</span></a></li>
|
|
|
|
<li><a href="#index_d"><span>d</span></a></li>
|
|
|
|
<li><a href="#index_g"><span>g</span></a></li>
|
|
|
|
<li><a href="#index_h"><span>h</span></a></li>
|
|
|
|
<li><a href="#index_i"><span>i</span></a></li>
|
|
|
|
<li><a href="#index_k"><span>k</span></a></li>
|
|
|
|
<li><a href="#index_l"><span>l</span></a></li>
|
|
|
|
<li><a href="#index_m"><span>m</span></a></li>
|
|
|
|
<li><a href="#index_n"><span>n</span></a></li>
|
|
|
|
<li><a href="#index_o"><span>o</span></a></li>
|
|
|
|
<li><a href="#index_p"><span>p</span></a></li>
|
|
|
|
<li><a href="#index_r"><span>r</span></a></li>
|
|
|
|
<li><a href="#index_s"><span>s</span></a></li>
|
|
|
|
<li><a href="#index_t"><span>t</span></a></li>
|
|
|
|
</ul>
|
|
|
|
</div>
|
2010-08-14 14:30:41 +02:00
|
|
|
</div>
|
|
|
|
<div class="contents">
|
2010-08-16 22:09:34 +02:00
|
|
|
Here is a list of all struct and union fields with links to the structures/unions they belong to:
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_a"></a>- a -</h3><ul>
|
|
|
|
<li>alertClusteringInterval
|
|
|
|
: <a class="el" href="structAI__config.html#a7d0d098b8263aa3d8415b11d1ec7f93d">AI_config</a>
|
|
|
|
</li>
|
|
|
|
<li>alertfile
|
|
|
|
: <a class="el" href="structAI__config.html#a2efa9590d7eea6dce8b5dd9aa76ed8ca">AI_config</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_c"></a>- c -</h3><ul>
|
|
|
|
<li>children
|
|
|
|
: <a class="el" href="struct__hierarchy__node.html#afc23d4fe6426873164cdaab2f3d4f0cd">_hierarchy_node</a>
|
|
|
|
</li>
|
|
|
|
<li>classification
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#aa89585e14acb2c4e684a1552d322632f">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>clusterfile
|
|
|
|
: <a class="el" href="structAI__config.html#a6da02a3f7116fd3810a41b738e8883a3">AI_config</a>
|
|
|
|
</li>
|
|
|
|
<li>count
|
|
|
|
: <a class="el" href="structattribute__value.html#a5579c0304c2e9ab488ac94905b385045">attribute_value</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_d"></a>- d -</h3><ul>
|
2010-09-04 21:33:53 +02:00
|
|
|
<li>databaseParsingInterval
|
|
|
|
: <a class="el" href="structAI__config.html#ae6ca715cab1d90b70c3aad443133c263">AI_config</a>
|
|
|
|
</li>
|
|
|
|
<li>dbhost
|
|
|
|
: <a class="el" href="structAI__config.html#a8e56f1a1b2095d3d329c8068ea0f3aab">AI_config</a>
|
|
|
|
</li>
|
|
|
|
<li>dbname
|
|
|
|
: <a class="el" href="structAI__config.html#ac8a93607f12106e2f5c9b43af27107da">AI_config</a>
|
|
|
|
</li>
|
|
|
|
<li>dbpass
|
|
|
|
: <a class="el" href="structAI__config.html#aa1cda349763faf60b2ebdbf2d187ae7d">AI_config</a>
|
|
|
|
</li>
|
|
|
|
<li>dbuser
|
|
|
|
: <a class="el" href="structAI__config.html#aa004adebfdafb6d14092aecd7f4912b0">AI_config</a>
|
|
|
|
</li>
|
2010-08-16 22:09:34 +02:00
|
|
|
<li>desc
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#ac0902d7c756ec675fb06347ce4706135">_AI_snort_alert</a>
|
|
|
|
</li>
|
2010-08-14 14:30:41 +02:00
|
|
|
<li>dst_port
|
|
|
|
: <a class="el" href="structpkt__key.html#af77f5eb1f4cd88b43fe99fd73553351d">pkt_key</a>
|
2010-08-16 22:09:34 +02:00
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_g"></a>- g -</h3><ul>
|
|
|
|
<li>gid
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#af8408be5da59cda853442dd13465c0f6">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>grouped_alarms_count
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a285aff12d6bac03c316ccc5305d28e53">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_h"></a>- h -</h3><ul>
|
|
|
|
<li>h_node
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#ac53765584296ead1328eabfaba8a3aed">_AI_snort_alert</a>
|
2010-08-14 14:30:41 +02:00
|
|
|
</li>
|
|
|
|
<li>hashCleanupInterval
|
2010-08-16 22:09:34 +02:00
|
|
|
: <a class="el" href="structAI__config.html#a9f7680615027d4fb74b4aa144a7028a4">AI_config</a>
|
2010-08-14 14:30:41 +02:00
|
|
|
</li>
|
|
|
|
<li>hh
|
2010-08-16 22:09:34 +02:00
|
|
|
: <a class="el" href="structattribute__value.html#a9abf5d1758ee0cc4803e3b40fc4481cc">attribute_value</a>
|
|
|
|
, <a class="el" href="structpkt__info.html#a264e90d4b5d490de040f38c1072e142f">pkt_info</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_i"></a>- i -</h3><ul>
|
2010-09-04 21:33:53 +02:00
|
|
|
<li>ip_dst_addr
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a754ca683593c838e4032fa8c13b1512b">_AI_snort_alert</a>
|
2010-08-14 14:30:41 +02:00
|
|
|
</li>
|
2010-09-04 21:33:53 +02:00
|
|
|
<li>ip_id
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a2fc673dec85a7b49dd16ac7c0bb1bb78">_AI_snort_alert</a>
|
2010-08-16 22:09:34 +02:00
|
|
|
</li>
|
2010-09-04 21:33:53 +02:00
|
|
|
<li>ip_len
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#ad3ffe99036513d5f33b94d22fb84f8f1">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>ip_proto
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a5ea7b250ac1c472f3ab57565b6df2536">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>ip_src_addr
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a194117c57a52933d16a97838562bb611">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>ip_tos
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a3f3c47f9baf3229d067504a85873b416">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>ip_ttl
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a3c9bbe84ec696cd58668a45799a66600">_AI_snort_alert</a>
|
2010-08-16 22:09:34 +02:00
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_k"></a>- k -</h3><ul>
|
2010-08-14 14:30:41 +02:00
|
|
|
<li>key
|
2010-08-16 22:09:34 +02:00
|
|
|
: <a class="el" href="structattribute__value.html#aa8b5ae41c150e4fefb800d3b1924278d">attribute_value</a>
|
|
|
|
, <a class="el" href="structpkt__info.html#a231d4734d3c62292b06eb9ea4b49c339">pkt_info</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_l"></a>- l -</h3><ul>
|
|
|
|
<li>label
|
|
|
|
: <a class="el" href="struct__hierarchy__node.html#ae498f6fd14ca058a3ae0a95d5425451a">_hierarchy_node</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_m"></a>- m -</h3><ul>
|
|
|
|
<li>max
|
|
|
|
: <a class="el" href="structattribute__key.html#a82b7e5ac49820b816871a4ddf30c462d">attribute_key</a>
|
|
|
|
</li>
|
|
|
|
<li>max_val
|
|
|
|
: <a class="el" href="struct__hierarchy__node.html#a79ea88029938dc30ab8f159405d12c87">_hierarchy_node</a>
|
|
|
|
</li>
|
|
|
|
<li>min
|
|
|
|
: <a class="el" href="structattribute__key.html#a4fdb3d7aabeac6b1052b59e05e3d8842">attribute_key</a>
|
|
|
|
</li>
|
|
|
|
<li>min_val
|
|
|
|
: <a class="el" href="struct__hierarchy__node.html#a13ceebd7b435b9ef347fb90d9e6bbfe4">_hierarchy_node</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_n"></a>- n -</h3><ul>
|
|
|
|
<li>nchildren
|
|
|
|
: <a class="el" href="struct__hierarchy__node.html#a849256ce1039e2cefaaf64d91171be0a">_hierarchy_node</a>
|
2010-08-14 14:30:41 +02:00
|
|
|
</li>
|
|
|
|
<li>next
|
2010-08-16 22:09:34 +02:00
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#aa8336d4b3359015ed8ea312ca1fd1173">_AI_snort_alert</a>
|
|
|
|
, <a class="el" href="structpkt__info.html#a5ee3c51f2ca5768b94819182641ef168">pkt_info</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_o"></a>- o -</h3><ul>
|
|
|
|
<li>observed
|
|
|
|
: <a class="el" href="structpkt__info.html#ac7ff78ea5faf333fc91f92e3085ea7c9">pkt_info</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_p"></a>- p -</h3><ul>
|
|
|
|
<li>parent
|
|
|
|
: <a class="el" href="struct__hierarchy__node.html#a5c94c89d7e2aea393f1c550afb766bbe">_hierarchy_node</a>
|
2010-08-14 14:30:41 +02:00
|
|
|
</li>
|
|
|
|
<li>pkt
|
|
|
|
: <a class="el" href="structpkt__info.html#a8d5ebd04a32067b05387e5c5056fe168">pkt_info</a>
|
|
|
|
</li>
|
2010-08-16 22:09:34 +02:00
|
|
|
<li>priority
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a25661fa4e212c5e30af5e6a892985ec9">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_r"></a>- r -</h3><ul>
|
|
|
|
<li>rev
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a864d3baa48586d6a31639f4cd27d9d37">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_s"></a>- s -</h3><ul>
|
|
|
|
<li>sid
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a3349aa68d2234f8ffd897367c3a8a137">_AI_snort_alert</a>
|
|
|
|
</li>
|
2010-08-14 14:30:41 +02:00
|
|
|
<li>src_ip
|
|
|
|
: <a class="el" href="structpkt__key.html#a3a091c20dafb8b3f689db00c5b2f8ddb">pkt_key</a>
|
|
|
|
</li>
|
2010-08-16 22:09:34 +02:00
|
|
|
<li>stream
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a09dfe0a841fd3912ec78060d4547cb31">_AI_snort_alert</a>
|
|
|
|
</li>
|
2010-08-14 14:30:41 +02:00
|
|
|
<li>streamExpireInterval
|
2010-08-16 22:09:34 +02:00
|
|
|
: <a class="el" href="structAI__config.html#abbe77d5f94b8c5164bea47acba09c98b">AI_config</a>
|
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
|
|
|
|
|
|
|
|
<h3><a class="anchor" id="index_t"></a>- t -</h3><ul>
|
2010-09-04 21:33:53 +02:00
|
|
|
<li>tcp_ack
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a8aac577224a4325ec50511c6d79b4b79">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>tcp_dst_port
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#aaca31cb67d48ffc3bfd1227686d5f5a4">_AI_snort_alert</a>
|
|
|
|
</li>
|
2010-08-16 22:09:34 +02:00
|
|
|
<li>tcp_flags
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#aa643f11db93b70242b57f0a04775e507">_AI_snort_alert</a>
|
|
|
|
</li>
|
2010-09-04 21:33:53 +02:00
|
|
|
<li>tcp_len
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#ab7e0507050b8e475fea7a4b26c768857">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>tcp_seq
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#ad6edf59fccea55bf5f940bf36117020b">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>tcp_src_port
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a4d4cbdbd9675f4c43545547f55174cb7">_AI_snort_alert</a>
|
|
|
|
</li>
|
|
|
|
<li>tcp_window
|
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a1687fccc26bb211591db8b36ffec5348">_AI_snort_alert</a>
|
2010-08-14 14:30:41 +02:00
|
|
|
</li>
|
|
|
|
<li>timestamp
|
2010-08-16 22:09:34 +02:00
|
|
|
: <a class="el" href="struct__AI__snort__alert.html#a10a67f60ca3da339a2104849a0b2ac19">_AI_snort_alert</a>
|
|
|
|
, <a class="el" href="structpkt__info.html#a7f5090443f21e6290f0439f1bb872e92">pkt_info</a>
|
|
|
|
</li>
|
|
|
|
<li>type
|
2010-09-04 21:33:53 +02:00
|
|
|
: <a class="el" href="structattribute__value.html#a5322c4edde771a7ee0d9fc5f5e45484c">attribute_value</a>
|
|
|
|
, <a class="el" href="struct__hierarchy__node.html#a3b18e3ddfa2212c5e4ff9c0b4bde4296">_hierarchy_node</a>
|
2010-08-14 14:30:41 +02:00
|
|
|
</li>
|
|
|
|
</ul>
|
|
|
|
</div>
|
|
|
|
<!--- window showing the filter options -->
|
|
|
|
<div id="MSearchSelectWindow"
|
|
|
|
onmouseover="return searchBox.OnSearchSelectShow()"
|
|
|
|
onmouseout="return searchBox.OnSearchSelectHide()"
|
|
|
|
onkeydown="return searchBox.OnSearchSelectKey(event)">
|
|
|
|
<a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(0)"><span class="SelectionMark"> </span>All</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(1)"><span class="SelectionMark"> </span>Data Structures</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(2)"><span class="SelectionMark"> </span>Files</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(3)"><span class="SelectionMark"> </span>Functions</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(4)"><span class="SelectionMark"> </span>Variables</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(5)"><span class="SelectionMark"> </span>Typedefs</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(6)"><span class="SelectionMark"> </span>Enumerations</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(7)"><span class="SelectionMark"> </span>Enumerator</a><a class="SelectItem" href="javascript:void(0)" onclick="searchBox.OnSelectItem(8)"><span class="SelectionMark"> </span>Defines</a></div>
|
|
|
|
|
|
|
|
<!-- iframe showing the search results (closed by default) -->
|
|
|
|
<div id="MSearchResultsWindow">
|
|
|
|
<iframe src="" frameborder="0"
|
|
|
|
name="MSearchResults" id="MSearchResults">
|
|
|
|
</iframe>
|
|
|
|
</div>
|
|
|
|
|
2010-09-04 21:33:53 +02:00
|
|
|
<hr class="footer"/><address class="footer"><small>Generated on Sat Sep 4 2010 21:30:42 for Snort AI preprocessor module by
|
2010-08-14 14:30:41 +02:00
|
|
|
<a href="http://www.doxygen.org/index.html">
|
|
|
|
<img class="footer" src="doxygen.png" alt="doxygen"/></a> 1.7.1 </small></address>
|
|
|
|
</body>
|
|
|
|
</html>
|