[Snort-openappid] Document about API:CHPCreateApp API:CHPAddAction

puremonkey2001 at ...63... puremonkey2001 at ...63...
Tue Nov 11 20:33:04 EST 2014


Hi Mike~
Thanks for your response. I can't wait to know how to use those APIs to write rules and do contribution.Many thanks!
Best Regards,John 

     Mike Stepanek (mstepane) <mstepane at ...5...> 於 2014/11/11 (週二) 10:02 PM 寫道﹕
   

 #yiv9604267506 #yiv9604267506 -- _filtered #yiv9604267506 {font-family:Helvetica;panose-1:2 11 6 4 2 2 2 2 2 4;} _filtered #yiv9604267506 {font-family:Helvetica;panose-1:2 11 6 4 2 2 2 2 2 4;} _filtered #yiv9604267506 {font-family:Calibri;panose-1:2 15 5 2 2 2 4 3 2 4;} _filtered #yiv9604267506 {font-family:Tahoma;panose-1:2 11 6 4 3 5 4 4 2 4;}#yiv9604267506 #yiv9604267506 p.yiv9604267506MsoNormal, #yiv9604267506 li.yiv9604267506MsoNormal, #yiv9604267506 div.yiv9604267506MsoNormal {margin:0in;margin-bottom:.0001pt;font-size:12.0pt;}#yiv9604267506 a:link, #yiv9604267506 span.yiv9604267506MsoHyperlink {color:blue;text-decoration:underline;}#yiv9604267506 a:visited, #yiv9604267506 span.yiv9604267506MsoHyperlinkFollowed {color:purple;text-decoration:underline;}#yiv9604267506 span.yiv9604267506EmailStyle17 {color:#1F497D;}#yiv9604267506 .yiv9604267506MsoChpDefault {font-size:10.0pt;} _filtered #yiv9604267506 {margin:1.0in 1.0in 1.0in 1.0in;}#yiv9604267506 div.yiv9604267506WordSection1 {}#yiv9604267506 John -    That API is a work in progress.  It may be supported by a future release of OpenAppID.  In the meantime, those detectors are disabled in the released ODP.    - Mike Stepanek    mstepane at ...5...       From: puremonkey2001 at ...63... [mailto:puremonkey2001 at ...63...]
Sent: Tuesday, November 11, 2014 3:56 AM
To: snort-openappid at lists.sourceforge.net
Subject: [Snort-openappid] Document about API:CHPCreateApp API:CHPAddAction    Hi all~    When I start to learn how to write openappid rule, I check the exist rules under oppenappid/odp/lua. And I see lots of API usages of CHPCreateApp and CHPAddAction. I check the document "OpenDetectorDeveloperGuide.pdf" and no reference about them. So is there any document or reference for me to learn how to use those two apis?       Many thanks!    Best Regards, John 

   
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-openappid/attachments/20141112/816650a7/attachment.html>


More information about the Snort-openappid mailing list