Skip to content

Gene Version 1.4
Compare
Choose a tag to compare
@qjerome qjerome released this 19 May 20:46
· 91 commits to master since this release
v1.4
9c51c58
  • Introduction of regular expression templates to save time always when needing same regexp in different rules
  • FieldMatch now support new comparison operators
    • < > : for integer fields
    • &= : in order to do flag verifications on hexadecimal values
  • New command line switches / features
    • -dump : dumps the rule in the terminal after applying the templates (useful for debugging)
    • -reduce : extract some statistics from already processed events (used to post-process Gene results)
  • Bug fix in condition evaluation (in a very specific case)
  • Test cases added and validaded for all the new features and bug fix
Assets 5
Loading