OSPF Dissector

reda_sabir · December 13, 2015, 8:00pm

Hello everyone,

I was wondering if is it possible to make an analyzer of OSPF with Binpac. The problem that I face is that OSPF is a layer 4 (there’s no tcp or udp).

Can anyone give me a solution of my problem?

Thanks you,

Reda Sabir

Michal_Purzynski1 · December 22, 2015, 3:05pm

It sure is!! There’s an excellent lesson how to write analyzers, and another routing protocol is dissected - RIP.

That’s BinPac, so something Bro uses now.

Topic		Replies	Views
OSPF protocol analyzer Development development	2	104	May 6, 2022
Problems in writing an analyzer for custom TCP-based protocol Zeek	1	84	May 6, 2022
ntp protocol analyzer Zeek	4	99	May 6, 2022
Writing a new analyzer Zeek	4	75	May 6, 2022
DDS and RTPS protocol analyzer Zeek	1	80	May 6, 2022