Suricata
1. What is Suricata
2. Quickstart guide
3. Installation
4. Upgrading
5. Security Considerations
6. Support Status
7. Command Line Options
8. Suricata Rules
9. Rule Management
10. Making sense out of Alerts
11. Performance
12. Configuration
13. Reputation
14. Init Scripts
15. Setting up IPS/inline for Linux
16. Setting up IPS/inline for Windows
17. Output
18. Lua support
19. File Extraction
20. Public Data Sets
21. Using Capture Hardware
22. Interacting via Unix Socket
23. Plugins
24. Firewall Mode
25. 3rd Party Integration
26. Man Pages
27. Acknowledgements
28. Licenses
29. Suricata Developer Guide
29.1. Working with the Codebase
29.2. Contributing
29.3. Suricata Internals
29.4. Extending Suricata
29.4.1. Packet Capture
29.4.2. Packet Decoder
29.4.3. App-Layer
29.4.3.1. Application Layer Frame Support
29.4.3.2. Parsers
29.4.3.3. Transactions
29.4.4. Detection
29.4.5. Output
29.5. LibSuricata and Plugins
29.6. Upgrading
30. Verifying Suricata Source Distribution Files
31. Appendix
Suricata
29.
Suricata Developer Guide
29.4.
Extending Suricata
29.4.3.
App-Layer
View page source
29.4.3.
App-Layer
29.4.3.1. Application Layer Frame Support
29.4.3.1.1. Baseline
29.4.3.1.2. General Concepts
29.4.3.1.3. Adding Frame Support to a Parser
29.4.3.1.4. Visual context
29.4.3.2. Parsers
29.4.3.2.1. Callbacks
29.4.3.2.2. Return Types
29.4.3.3. Transactions
29.4.3.3.1. General Concepts
29.4.3.3.2. How the engine uses transactions
29.4.3.3.3. Progress Tracking
29.4.3.3.4. Examples
29.4.3.3.5. Work In Progress changes
29.4.3.3.6. Common words and abbreviations