base/bif/stats.bif.zeek¶
- GLOBAL¶
- Namespace
GLOBAL
Summary¶
Functions¶
Returns statistics about Broker communication. |
|
Returns Zeek traffic statistics. |
|
Returns statistics about DNS lookup activity. |
|
Returns statistics about calls to event handlers. |
|
Returns statistics about the event engine. |
|
Returns statistics about file analysis. |
|
Returns statistics about TCP gaps. |
|
Returns statistics about the regular expression engine. |
|
Returns packet capture statistics. |
|
Returns Zeek process statistics. |
|
Returns statistics about reassembler usage. |
|
Returns statistics about reporter messages and weirds. |
|
Returns statistics about thread usage. |
|
Returns statistics about timer usage. |
Detailed Interface¶
Functions¶
- get_broker_stats¶
- Type
function() :BrokerStats
Returns statistics about Broker communication.
- Returns
A record with Broker statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_conn_stats¶
-
Returns Zeek traffic statistics.
- Returns
A record with connection and packet statistics.
See also:
get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_dns_stats¶
-
Returns statistics about DNS lookup activity.
- Returns
A record with DNS lookup statistics.
See also:
get_conn_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_event_handler_stats¶
- Type
function() :EventNameStats
Returns statistics about calls to event handlers.
- Returns
A record with event call statistics.
- get_event_stats¶
- Type
function() :EventStats
Returns statistics about the event engine.
- Returns
A record with event engine statistics.
See also:
get_conn_stats,get_dns_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_file_analysis_stats¶
- Type
Returns statistics about file analysis.
- Returns
A record with file analysis statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_gap_stats¶
-
Returns statistics about TCP gaps.
- Returns
A record with TCP gap statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_matcher_stats¶
- Type
function() :MatcherStats
Returns statistics about the regular expression engine. Statistics include the number of distinct matchers, DFA states, DFA state transitions, memory usage of DFA states, cache hits/misses, and average number of NFA states across all matchers.
- Returns
A record with matcher statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_net_stats¶
-
Returns packet capture statistics. Statistics include the number of packets (i) received by Zeek, (ii) dropped, and (iii) seen on the link (not always available).
- Returns
A record of packet statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_proc_stats¶
-
Returns Zeek process statistics.
- Returns
A record with process statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_reassembler_stats¶
- Type
function() :ReassemblerStats
Returns statistics about reassembler usage.
- Returns
A record with reassembler statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_thread_stats,get_timer_stats,get_broker_stats,get_reporter_stats- TODO
this should have been deprecated before?
- get_reporter_stats¶
- Type
function() :ReporterStats
Returns statistics about reporter messages and weirds.
- Returns
A record with reporter statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_timer_stats,get_broker_stats
- get_thread_stats¶
- Type
function() :ThreadStats
Returns statistics about thread usage.
- Returns
A record with thread usage statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_timer_stats,get_broker_stats,get_reporter_stats
- get_timer_stats¶
- Type
function() :TimerStats
Returns statistics about timer usage.
- Returns
A record with timer usage statistics.
See also:
get_conn_stats,get_dns_stats,get_event_stats,get_file_analysis_stats,get_gap_stats,get_matcher_stats,get_net_stats,get_proc_stats,get_reassembler_stats,get_thread_stats,get_broker_stats,get_reporter_stats