suricata
Functions
detect-modbus.c File Reference
#include "suricata-common.h"
#include "detect.h"
#include "detect-parse.h"
#include "detect-engine.h"
#include "detect-modbus.h"
#include "util-debug.h"
#include "util-byte.h"
#include "stream-tcp.h"
#include "rust.h"
Include dependency graph for detect-modbus.c:

Go to the source code of this file.

Functions

void DetectModbusRegister (void)
 Registration function for Modbus keyword. More...
 

Detailed Description

Author
David DIALLO diall.nosp@m.o@et.nosp@m..esie.nosp@m.a.fr

Implements the Modbus function and access keywords You can specify a:

  • concrete function like Modbus: function 8, subfunction 4 (diagnostic: Force Listen Only Mode)
  • data (in primary table) register access (r/w) like Modbus: access read coils, address 1000 (.i.e Read coils: at address 1000)
  • write data value at specific address Modbus: access write, address 1500<>2000, value >2000 (Write multiple coils/register: at address between 1500 and 2000 value greater than 2000)

Definition in file detect-modbus.c.

Function Documentation

◆ DetectModbusRegister()

void DetectModbusRegister ( void  )

Registration function for Modbus keyword.

Definition at line 120 of file detect-modbus.c.

References SigTableElmt_::desc, DETECT_AL_MODBUS, SigTableElmt_::Match, SigTableElmt_::name, SigTableElmt_::Setup, sigmatch_table, and SigTableElmt_::url.

Referenced by SigTableSetup().

Here is the caller graph for this function: