Series of packets identification capabilities

Marking of a single packet is not enough sometimes to detect scanners like nmap and some types of attacks.

The badcapt should use some kind of caching mechanisms for a particular source IP-address to process through all packets the host sent.

Caching libraries to consider:
- https://github.com/bluele/gcache
- https://github.com/allegro/bigcache
- https://github.com/VictoriaMetrics/fastcache

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Series of packets identification capabilities #4

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Series of packets identification capabilities #4

Description

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions