Snort: by author
RSS Feed
About List
All Lists
Previous period
410 messages
starting Sep 28 17 and
ending Aug 15 17
Date index |
Thread index |
Author index
Ajay Khadpe via Snort-users
Not able to configure min_response_seconds to 5sec Ajay Khadpe via Snort-users (Sep 28)
Ajdin Lupčević via Snort-users
snort[731]: FATAL ERROR: Cannot decode data link type 113 on openvz VPS Ajdin Lupčević via Snort-users (Aug 10)
Configuring snort port to listen Ajdin Lupčević via Snort-users (Aug 14)
Alberto Colosi via Snort-users
Re: dmz monitorin Alberto Colosi via Snort-users (Jul 22)
Re: Few questions from a new Snort user Alberto Colosi via Snort-users (Sep 02)
alex cheimarios via Snort-devel
snort packet rate filter rules issue on linux kernel 4.4.74 alex cheimarios via Snort-devel (Sep 06)
Al Lewis (allewi) via Snort-sigs
Re: Issue with byte_test and bitmask Al Lewis (allewi) via Snort-sigs (Sep 28)
Re: Content Rule problem Al Lewis (allewi) via Snort-sigs (Sep 17)
Re: rule exclusion by content Al Lewis (allewi) via Snort-sigs (Jul 13)
Re: Detecting bad UDP Header in packet Al Lewis (allewi) via Snort-sigs (Aug 15)
Al Lewis (allewi) via Snort-users
Re: Non-Determinism in Snort detection engine Al Lewis (allewi) via Snort-users (Jul 07)
Re: (no subject) Al Lewis (allewi) via Snort-users (Aug 18)
Re: Snort 2.1 Intrusion Detection Book - CD ROM file Al Lewis (allewi) via Snort-users (Sep 29)
Re: Limits of Snort TCP reconstruction Al Lewis (allewi) via Snort-users (Aug 31)
Re: Question about 'TCP distributed portscan' signature Al Lewis (allewi) via Snort-users (Jul 26)
Re: (no subject) Al Lewis (allewi) via Snort-users (Aug 02)
Re: Understanding flow options (no_stream|only_stream) (no_frag|only_frag) Al Lewis (allewi) via Snort-users (Aug 02)
Re: Question about 'TCP distributed portscan' signature Al Lewis (allewi) via Snort-users (Jul 27)
Re: Unified2 Output Al Lewis (allewi) via Snort-users (Jul 15)
Re: snort[731]: FATAL ERROR: Cannot decode data link type 113 on openvz VPS Al Lewis (allewi) via Snort-users (Aug 10)
Re: Finding and Removing Rules Al Lewis (allewi) via Snort-users (Jul 09)
Re: Testing Rule Al Lewis (allewi) via Snort-users (Jul 12)
Re: BASE is showing "Snort Alert" and sid instead of the message field. Al Lewis (allewi) via Snort-users (Sep 19)
Re: Explain a line Al Lewis (allewi) via Snort-users (Aug 01)
Re: file_inspect holds blocked files into its memory until snort stops Al Lewis (allewi) via Snort-users (Sep 25)
Re: Testing Rule Al Lewis (allewi) via Snort-users (Jul 12)
Re: Limits of Snort TCP reconstruction Al Lewis (allewi) via Snort-users (Aug 31)
Re: NID mode Al Lewis (allewi) via Snort-users (Aug 23)
Re: IDS Al Lewis (allewi) via Snort-users (Jul 10)
Re: Snort isn't Starting.. Need Help!!! Al Lewis (allewi) via Snort-users (Jul 06)
Re: Snort Alert is Not Producing Any Timestamp Al Lewis (allewi) via Snort-users (Jul 03)
Re: Conf issue Al Lewis (allewi) via Snort-users (Aug 12)
Re: IDS Al Lewis (allewi) via Snort-users (Jul 10)
Anna
Snort is using a lot of memory Anna (Sep 19)
Re: Snort is using a lot of memory Anna (Sep 29)
Flowbits warnings problem Anna (Aug 04)
aquarian_new via Snort-users
Re: Promiscuous mode aquarian_new via Snort-users (Aug 12)
aquarian_new--- via Snort-users
Re: Simple preprocessor example aquarian_new--- via Snort-users (Aug 07)
Asad, Hafiz ul
Re: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Re: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Re: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Re: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Re: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Re: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Re: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Fw: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Re: Non-Determinism in Snort detection engine Asad, Hafiz ul (Jul 07)
Berkay Koyutürk
Re: file_inspect holds blocked files into its memory until snort stops Berkay Koyutürk (Sep 11)
Re: file_inspect holds blocked files into its memory until snort stops Berkay Koyutürk (Sep 27)
file_inspect holds blocked files into its memory until snort stops Berkay Koyutürk (Sep 06)
Re: file_inspect holds blocked files into its memory until snort stops Berkay Koyutürk (Sep 27)
Re: file_inspect holds blocked files into its memory until snort stops Berkay Koyutürk (Sep 25)
Betts, Tony
Please unsubscribe me from this list Betts, Tony (Jul 13)
BILL LARIVIERE via Snort-sigs
Detecting bad UDP Header in packet BILL LARIVIERE via Snort-sigs (Aug 15)
Bill Parker via Snort-devel
Re: Snort init script `stats` function Bill Parker via Snort-devel (Aug 23)
Branden Archer via Snort-devel
Suggested documentation updates Branden Archer via Snort-devel (Jul 05)
Carlos Delgado via Snort-users
Re: (no subject) Carlos Delgado via Snort-users (Aug 01)
Cziple Csaba via Snort-users
dmz monitorin Cziple Csaba via Snort-users (Jul 22)
Damian Torres via Snort-sigs
Issue with byte_test and bitmask Damian Torres via Snort-sigs (Sep 27)
Re: Issue with byte_test and bitmask Damian Torres via Snort-sigs (Sep 29)
Damian Torres via Snort-users
Re: About rule setting Damian Torres via Snort-users (Sep 27)
Understanding flow options (no_stream|only_stream) (no_frag|only_frag) Damian Torres via Snort-users (Aug 02)
Re: Understanding flow options (no_stream|only_stream) (no_frag|only_frag) Damian Torres via Snort-users (Aug 03)
Re: (no subject) Damian Torres via Snort-users (Aug 02)
Re: Flowbits warnings problem Damian Torres via Snort-users (Aug 04)
Daniel Holt
REMOVE Daniel Holt (Sep 25)
Dan O'Brien via Snort-users
MySQL / Snort Dan O'Brien via Snort-users (Sep 17)
Snort / Rules / Pulled Pork Dan O'Brien via Snort-users (Sep 16)
BASE Dan O'Brien via Snort-users (Sep 09)
Re: Snort / Rules / Pulled Pork Dan O'Brien via Snort-users (Sep 16)
Re: BASE Dan O'Brien via Snort-users (Sep 14)
Re: Snort / Rules / Pulled Pork Dan O'Brien via Snort-users (Sep 16)
Re: Snort / Rules / Pulled Pork Dan O'Brien via Snort-users (Sep 16)
Darren Spruell via Snort-users
Re: dmz monitorin Darren Spruell via Snort-users (Jul 22)
Dave Osbourne
Re: snort[731]: FATAL ERROR: Cannot decode data link type 113 on openvz VPS Dave Osbourne (Aug 10)
Re: pcre/regex help Dave Osbourne (Sep 29)
Dimz via Snort-users
Re: Snort Alert is Not Producing Any Timestamp Dimz via Snort-users (Jul 03)
Snort Alert is Not Producing Any Timestamp Dimz via Snort-users (Jul 03)
Closed: Snort-users Digest, Vol 2, Issue 2 Dimz via Snort-users (Jul 03)
Dorian ROSSE
Misc UPNP Attak on my two network devices (a modem and a routeur) Dorian ROSSE (Sep 21)
Doug Burks via Snort-users
Re: Overriding securityonion_rules.xml Doug Burks via Snort-users (Aug 13)
Edward Borgoyn
Re: Non-Determinism in Snort detection engine Edward Borgoyn (Jul 07)
Re: Config issues Edward Borgoyn (Aug 14)
Re: Non-Determinism in Snort detection engine Edward Borgoyn (Jul 07)
Eric Warren via Snort-users
oinkcode not working for VRT rules Eric Warren via Snort-users (Jul 25)
Fabian InfoSec via Snort-users
Re: removed mail lists Fabian InfoSec via Snort-users (Jul 31)
Felix Erlacher
Re: Non-Determinism in Snort detection engine Felix Erlacher (Jul 07)
Re: Non-Determinism in Snort detection engine Felix Erlacher (Jul 07)
flipsdd () sina com
Re: Snort-users Digest, Vol 3, Issue 30 flipsdd () sina com (Aug 23)
Frank Beer via Snort-sigs
Outdated rules Frank Beer via Snort-sigs (Aug 28)
Geoff Serrao via Snort-users
Re: Limits of Snort TCP reconstruction Geoff Serrao via Snort-users (Aug 31)
GRSmith
Overriding securityonion_rules.xml GRSmith (Aug 13)
Gwendal Cournee via Snort-devel
Re: Configure Snort with --enable-test-coverage Gwendal Cournee via Snort-devel (Jul 24)
Configure Snort with --enable-test-coverage Gwendal Cournee via Snort-devel (Jul 24)
Gwendal Cournee via Snort-users
Configure Snort with --enable-test-coverage Gwendal Cournee via Snort-users (Jul 18)
Hafiza Jasni via Snort-users
(no subject) Hafiza Jasni via Snort-users (Aug 01)
Hasan ALPER
removed mail lists Hasan ALPER (Jul 31)
hicham taybi via Snort-users
tt hicham taybi via Snort-users (Aug 04)
Ibrahim Ahmed via Snort-users
Snort 2.1 Intrusion Detection Book - CD ROM file Ibrahim Ahmed via Snort-users (Sep 29)
Jaanus Randveer via Snort-users
Snort sending SNMP traps Jaanus Randveer via Snort-users (Sep 29)
James Lay
Re: Testing Rule James Lay (Jul 11)
Re: Testing Rule James Lay (Jul 09)
Re: Testing Rule James Lay (Jul 11)
Re: Alerts for OOXML and MOX James Lay (Sep 03)
Jan Hermes
Extending unified2 output with custom information from dynamic preprocessor Jan Hermes (Sep 02)
janilson correia via Snort-sigs
Please remove me from this list janilson correia via Snort-sigs (Jul 13)
Jason Hellenthal
Re: IDS Jason Hellenthal (Jul 10)
Re: IDS Jason Hellenthal (Jul 10)
Jason Williams
Re: [Emerging-Sigs] Detecting bad UDP Header in packet Jason Williams (Aug 19)
Jim Campbell
Snort 3 Config File Question (3) Jim Campbell (Jul 24)
Re: Snort 3 Config File Question (3) Jim Campbell (Jul 24)
Snort++ Problem with Rules Jim Campbell (Aug 09)
Re: Unified2 Output Jim Campbell (Jul 16)
Re: Delete logs on BASE Jim Campbell (Aug 23)
Re: Error using latest ruleset with Snort++ Jim Campbell (Jul 15)
Re: Question Jim Campbell (Sep 22)
Snort++ Build 239 Jim Campbell (Jul 29)
Re: Error using latest ruleset with Snort++ Jim Campbell (Jul 13)
Re: Snort++ Build 239 Jim Campbell (Aug 07)
Re: Snort 3 Config File Question (3) Jim Campbell (Jul 25)
Re: Snort 3 Config File Question (3) Jim Campbell (Jul 24)
Unified2 Output Jim Campbell (Jul 15)
Re: Snort 3 Config File Question (3) Jim Campbell (Jul 24)
Re: Error using latest ruleset with Snort++ Jim Campbell (Jul 15)
Re: Error using latest ruleset with Snort++ Jim Campbell (Jul 14)
Re: Snort 3 Config File Question (2) Jim Campbell (Jul 19)
Re: Error using latest ruleset with Snort++ Jim Campbell (Jul 14)
Snort 3 Config File Question (2) Jim Campbell (Jul 19)
Re: Error using latest ruleset with Snort++ Jim Campbell (Jul 13)
Re: Snort++ Build 239 Jim Campbell (Jul 31)
Re: Unified2 Output Jim Campbell (Jul 15)
Re: Error using latest ruleset with Snort++ Jim Campbell (Jul 13)
Snort++ Bad Barnyard2 Output Jim Campbell (Aug 11)
Snort 3 Config File Question (1) Jim Campbell (Jul 18)
Re: Error using latest ruleset with Snort++ Jim Campbell (Jul 12)
Re: Snort++ Build 239 Jim Campbell (Jul 31)
Snort 3 Permissions Jim Campbell (Jul 15)
Re: Snort++ Build 239 Jim Campbell (Aug 07)
Re: Snort++ Build 239 Jim Campbell (Aug 08)
Snort++ Build 239 Jim Campbell (Aug 24)
Re: Snort++ Build 239 Jim Campbell (Jul 29)
João Soares via Snort-users
Re: Error using latest ruleset with Snort++ João Soares via Snort-users (Jul 14)
Joel Esler (jesler) via Snort-devel
Re: precompiled so_rules for arm Joel Esler (jesler) via Snort-devel (Sep 06)
Re: Suggested documentation updates Joel Esler (jesler) via Snort-devel (Jul 05)
Joel Esler (jesler) via Snort-sigs
Re: Outdated rules Joel Esler (jesler) via Snort-sigs (Aug 28)
Joel Esler (jesler) via Snort-users
Re: (no subject) Joel Esler (jesler) via Snort-users (Aug 02)
Re: Non-Determinism in Snort detection engine Joel Esler (jesler) via Snort-users (Jul 07)
Re: Flowbits warnings problem Joel Esler (jesler) via Snort-users (Aug 04)
Re: How to make snort detect sid-msg.map Joel Esler (jesler) via Snort-users (Aug 01)
Re: Problem with snort VRT rules Joel Esler (jesler) via Snort-users (Sep 11)
Re: file_inspect holds blocked files into its memory until snort stops Joel Esler (jesler) via Snort-users (Sep 07)
Re: How to make snort detect sid-msg.map Joel Esler (jesler) via Snort-users (Aug 01)
Re: Snort is using a lot of memory Joel Esler (jesler) via Snort-users (Sep 19)
Re: Snort++ Problem with Rules Joel Esler (jesler) via Snort-users (Aug 09)
Re: Problem with snort VRT rules Joel Esler (jesler) via Snort-users (Sep 01)
Re: (no subject) Joel Esler (jesler) via Snort-users (Aug 01)
Re: (no subject) Joel Esler (jesler) via Snort-users (Aug 09)
Re: Teo En Ming's Guide to Passing the Cisco Certified Network Associate (CCNA) Exams Joel Esler (jesler) via Snort-users (Aug 20)
Joe Magueta
Rule to detect NMAP FIN Stealth Scan Joe Magueta (Jul 10)
John Hally
pcre/regex help John Hally (Sep 29)
Jones, Christopher (Chris) (Maj) via Snort-users
Finding and Removing Rules Jones, Christopher (Chris) (Maj) via Snort-users (Jul 07)
Whitelist and Alerts Jones, Christopher (Chris) (Maj) via Snort-users (Jul 12)
Joseph Roscioli via Snort-users
Mapping rules to policies Joseph Roscioli via Snort-users (Sep 28)
Joshua Kinard via Snort-devel
Re: Average delay per packet observation Joshua Kinard via Snort-devel (Jul 07)
jungun.baek
[SID 26168, 26169] Invalid rule information jungun.baek (Aug 28)
Justin Pederson via Snort-users
Re: IDS Justin Pederson via Snort-users (Jul 10)
IDS Justin Pederson via Snort-users (Jul 10)
Re: Testing Rule Justin Pederson via Snort-users (Jul 11)
Re: IDS Justin Pederson via Snort-users (Jul 10)
Re: Testing Rule Justin Pederson via Snort-users (Jul 12)
Start up Error Justin Pederson via Snort-users (Jul 06)
Re: IDS Justin Pederson via Snort-users (Jul 10)
Re: Testing Rule Justin Pederson via Snort-users (Jul 12)
Kai Chan via Snort-users
Re: Signature Problem Kai Chan via Snort-users (Sep 09)
Signature Problem Kai Chan via Snort-users (Sep 08)
Kanan Alkanan via Snort-users
Snort alerts and extra information Kanan Alkanan via Snort-users (Sep 19)
Help: filter snort alert Kanan Alkanan via Snort-users (Aug 25)
Snort+logstash Kanan Alkanan via Snort-users (Sep 12)
Keith Seymour via Snort-sigs
Re: Content Rule problem Keith Seymour via Snort-sigs (Sep 17)
Lawrence Belyeu via Snort-devel
Re: Can't read data_log output file (empty) Lawrence Belyeu via Snort-devel (Jul 17)
lists
Re: rule exclusion by content lists (Jul 13)
Re: Please remove me from this list lists (Jul 13)
lravelo
Re: rule exclusion by content lravelo (Jul 13)
Re: rule exclusion by content lravelo (Jul 13)
rule exclusion by content lravelo (Jul 13)
Luigi Fiorillo via Snort-users
Get rules of Snort Luigi Fiorillo via Snort-users (Sep 13)
Manojit Ghosh via Snort-users
NIPS Rules Manojit Ghosh via Snort-users (Aug 21)
Snort Inline Mode in Windows Manojit Ghosh via Snort-users (Aug 23)
Re: NIPS Rules Manojit Ghosh via Snort-users (Aug 21)
Wrong Timestamps on Windows Manojit Ghosh via Snort-users (Aug 23)
marcel cahya via Snort-users
(no subject) marcel cahya via Snort-users (Sep 30)
Marcin Dulak via Snort-users
Re: Snort 3 Config File Question (2) Marcin Dulak via Snort-users (Jul 19)
Re: Unified2 Output Marcin Dulak via Snort-users (Jul 16)
Re: Unified2 Output Marcin Dulak via Snort-users (Jul 15)
Re: Port scanning and dos detection Marcin Dulak via Snort-users (Aug 13)
Re: Config issues Marcin Dulak via Snort-users (Aug 12)
Re: Snort / Rules / Pulled Pork Marcin Dulak via Snort-users (Sep 16)
Re: Snort++ Build 239 Marcin Dulak via Snort-users (Aug 07)
Re: Snort 3 Config File Question (2) Marcin Dulak via Snort-users (Jul 19)
Re: Snort / Rules / Pulled Pork Marcin Dulak via Snort-users (Sep 16)
Re: Few questions from a new Snort user Marcin Dulak via Snort-users (Sep 03)
Re: (no subject) Marcin Dulak via Snort-users (Aug 09)
Re: Error using latest ruleset with Snort++ Marcin Dulak via Snort-users (Jul 13)
Re: NID mode Marcin Dulak via Snort-users (Aug 24)
Re: Snort / Rules / Pulled Pork Marcin Dulak via Snort-users (Sep 16)
Marco Bonilla via Snort-users
cb58b18fccc3b929cc757e62b78368aa1673a129 Marco Bonilla via Snort-users (Aug 17)
(no subject) Marco Bonilla via Snort-users (Aug 17)
Mario Arias via Snort-users
add a mailing list Mario Arias via Snort-users (Sep 24)
Matt Rogghe via Snort-users
Few questions from a new Snort user Matt Rogghe via Snort-users (Sep 02)
Michael H. Warfield
Re: Snort SSL decryption Michael H. Warfield (Jul 09)
Monika Kumari via Snort-sigs
CVE-2017-0250 Monika Kumari via Snort-sigs (Aug 30)
Navdeep Uniyal
Re: Average delay per packet observation Navdeep Uniyal (Jul 07)
Re: Average delay per packet observation Navdeep Uniyal (Jul 07)
Re: Snort Inline with TCP Connection Navdeep Uniyal (Jul 24)
Re: Average delay per packet observation Navdeep Uniyal (Jul 10)
Snort Inline with TCP Connection Navdeep Uniyal (Jul 20)
Re: Average delay per packet observation Navdeep Uniyal (Jul 07)
Average delay per packet observation Navdeep Uniyal (Jul 04)
neerav arora via Snort-users
Simple preprocessor example neerav arora via Snort-users (Aug 03)
How to make snort detect sid-msg.map neerav arora via Snort-users (Aug 01)
How to make snort detect sid-msg.map neerav arora via Snort-users (Aug 01)
How to display msg instead of sid in the snort alert logs neerav arora via Snort-users (Aug 01)
How to make snort detect sid-msg.map neerav arora via Snort-users (Aug 01)
Nick Palaszewski via Snort-users
Zookeeper and Snort Nick Palaszewski via Snort-users (Aug 04)
Noah Dietrich
Re: Snort 3 Config File Question (3) Noah Dietrich (Jul 24)
Re: Promiscuous mode Noah Dietrich (Aug 16)
Omar Johnatan Lopez Carrillo
Re: (no subject) Omar Johnatan Lopez Carrillo (Aug 02)
(no subject) Omar Johnatan Lopez Carrillo (Aug 02)
(no subject) Omar Johnatan Lopez Carrillo (Aug 18)
(no subject) Omar Johnatan Lopez Carrillo (Aug 08)
(no subject) Omar Johnatan Lopez Carrillo (Aug 09)
Pankaj Soni
Snort isn't Starting.. Need Help!!! Pankaj Soni (Jul 05)
Patrick Mullen
Re: Rule to detect NMAP FIN Stealth Scan Patrick Mullen (Jul 10)
Re: precompiled so_rules for arm Patrick Mullen (Sep 08)
Re: Average delay per packet observation Patrick Mullen (Jul 07)
Paul Bosworth via Snort-sigs
Re: Please remove me from this list Paul Bosworth via Snort-sigs (Jul 13)
Paulo Angelo
Re: (no subject) Paulo Angelo (Aug 09)
Paul O'Brien via Snort-users
(no subject) Paul O'Brien via Snort-users (Sep 30)
Fwd: BASE Paul O'Brien via Snort-users (Sep 11)
Peter Gallagher via Snort-devel
Re: Snort init script `stats` function Peter Gallagher via Snort-devel (Aug 23)
Snort init script `stats` function Peter Gallagher via Snort-devel (Aug 23)
Pharel's foussom via Snort-users
Re: Snort-users Digest, Vol 4, Issue 18 Pharel's foussom via Snort-users (Sep 20)
Photius Orfanidis
Re: Flowbit Dependencies Photius Orfanidis (Sep 20)
PNR INFORMATIQUE
TR: Problem with snort VRT rules PNR INFORMATIQUE (Sep 09)
Problem with snort VRT rules PNR INFORMATIQUE (Sep 01)
QuasWexExort via Snort-users
snort IPS QuasWexExort via Snort-users (Aug 22)
Inline Problems with Mininet QuasWexExort via Snort-users (Aug 22)
snort IPS QuasWexExort via Snort-users (Aug 22)
Rajkumar
Dynamic preprocessor error Rajkumar (Jul 06)
Rajkumar via Snort-users
Dynamic preprocessor error Rajkumar via Snort-users (Jul 05)
Dynamic module Rajkumar via Snort-users (Jul 07)
Rashid CORIA
SNORT with BASE & SWATCHDOG Rashid CORIA (Sep 26)
Re: Explain a line Rashid CORIA (Aug 01)
Delete logs on BASE Rashid CORIA (Aug 23)
Promiscuous mode Rashid CORIA (Aug 09)
Explain a line Rashid CORIA (Aug 01)
Mode promiscius Rashid CORIA (Jul 28)
redion xhepa via Snort-sigs
Fw: Content Rule problem redion xhepa via Snort-sigs (Sep 17)
Content Rule problem redion xhepa via Snort-sigs (Sep 17)
Re: Content Rule problem redion xhepa via Snort-sigs (Sep 17)
Renan Menezes via Snort-users
RES: Error using latest ruleset with Snort++ Renan Menezes via Snort-users (Jul 15)
Research
Snort Subscriber Rules Update 2017-08-08 Research (Aug 08)
Snort Subscriber Rules Update 2017-09-06 Research (Sep 06)
Snort Subscriber Rules Update 2017-08-22 Research (Aug 22)
Snort Subscriber Rules Update 2017-08-29 Research (Aug 29)
Snort Subscriber Rules Update 2017-07-11 Research (Jul 11)
Snort Subscriber Rules Update 2017-08-10 Research (Aug 10)
Snort Subscriber Rules Update 2017-09-14 Research (Sep 14)
Snort Subscriber Rules Update 2017-09-19 Research (Sep 19)
Snort Subscriber Rules Update 2017-07-20 Research (Jul 20)
Snort Subscriber Rules Update 2017-08-08 Research (Aug 08)
Snort Subscriber Rules Update 2017-07-06 Research (Jul 06)
Snort Subscriber Rules Update 2017-07-13 Research (Jul 13)
Snort Subscriber Rules Update 2017-09-08 Research (Sep 08)
Snort Subscriber Rules Update 2017-07-25 Research (Jul 25)
Snort Subscriber Rules Update 2017-08-24 Research (Aug 24)
Snort Subscriber Rules Update 2017-08-31 Research (Aug 31)
Snort Subscriber Rules Update 2017-09-05 Research (Sep 05)
Snort Subscriber Rules Update 2017-08-17 Research (Aug 17)
Snort Subscriber Rules Update 2017-07-27 Research (Jul 27)
Snort Subscriber Rules Update 2017-09-26 Research (Sep 26)
Snort Subscriber Rules Update 2017-07-03 Research (Jul 03)
Snort Subscriber Rules Update 2017-08-15 Research (Aug 15)
Snort Subscriber Rules Update 2017-08-01 Research (Aug 01)
Snort Subscriber Rules Update 2017-09-28 Research (Sep 28)
Snort Subscriber Rules Update 2017-09-21 Research (Sep 21)
Snort Subscriber Rules Update 2017-09-07 Research (Sep 07)
Snort Subscriber Rules Update 2017-07-18 Research (Jul 18)
Snort Subscriber Rules Update 2017-09-12 Research (Sep 12)
Snort Subscriber Rules Update 2017-08-03 Research (Aug 03)
Richard Harman via Snort-users
How to unsubscribe Richard Harman via Snort-users (Jul 31)
rmkml
New sig for detecting Ubiquiti Networks UniFi Cloud Key Firm v0.6.1 Host RCE rmkml (Aug 12)
Rob Weiss
Re: Please remove me from this list Rob Weiss (Jul 13)
Ronin CS via Snort-devel
Can't read data_log output file (empty) Ronin CS via Snort-devel (Jul 17)
Re: Can't read data_log output file (empty) Ronin CS via Snort-devel (Aug 03)
Re: Can't read data_log output file (empty) Ronin CS via Snort-devel (Jul 19)
Ron Sinclair via Snort-users
Re: BASE Ron Sinclair via Snort-users (Sep 10)
Russ via Snort-devel
Re: Extending unified2 output with custom information from dynamic preprocessor Russ via Snort-devel (Sep 04)
Re: Configure Snort with --enable-test-coverage Russ via Snort-devel (Jul 24)
Re: Unknown rule keyword Russ via Snort-devel (Jul 06)
Re: Snort 3 Architecture Russ via Snort-devel (Jul 23)
Re: Can't read data_log output file (empty) Russ via Snort-devel (Aug 03)
Re: Can't read data_log output file (empty) Russ via Snort-devel (Jul 17)
Russ via Snort-users
Re: Snort 3 Config File Question (3) Russ via Snort-users (Jul 24)
Re: Snort++ Build 239 Russ via Snort-users (Aug 07)
Re: Error using latest ruleset with Snort++ Russ via Snort-users (Jul 13)
Re: Non-Determinism in Snort detection engine Russ via Snort-users (Jul 07)
Re: Limits of Snort TCP reconstruction Russ via Snort-users (Sep 01)
Re: Snort++ Build 239 Russ via Snort-users (Aug 07)
Re: Snort++ Build 239 Russ via Snort-users (Jul 31)
Re: Error using latest ruleset with Snort++ Russ via Snort-users (Jul 12)
Re: snort++ automaker error Russ via Snort-users (Sep 29)
Re: Error using latest ruleset with Snort++ Russ via Snort-users (Jul 13)
Re: Non-Determinism in Snort detection engine Russ via Snort-users (Jul 07)
Re: Snort 3 Config File Question (3) Russ via Snort-users (Jul 24)
Re: Error using latest ruleset with Snort++ Russ via Snort-users (Jul 14)
Re: file_inspect holds blocked files into its memory until snort stops Russ via Snort-users (Sep 27)
Re: Error using latest ruleset with Snort++ Russ via Snort-users (Jul 14)
Re: Error using latest ruleset with Snort++ Russ via Snort-users (Jul 14)
Re: Snort++ Build 239 Russ via Snort-users (Aug 09)
Re: Snort 3 Permissions Russ via Snort-users (Jul 15)
Re: Error using latest ruleset with Snort++ Russ via Snort-users (Jul 15)
Re: Snort++ Bad Barnyard2 Output Russ via Snort-users (Aug 11)
Re: Snort++ Build 239 Russ via Snort-users (Aug 07)
Ryota Kurokawa
About rule setting Ryota Kurokawa (Sep 26)
Saeed Abbasi
Please remove me from this list Saeed Abbasi (Jul 13)
Saiqul Haq
Re: Snort-users Digest, Vol 3, Issue 15 Saiqul Haq (Aug 10)
salah ali via Snort-users
(no subject) salah ali via Snort-users (Sep 20)
Sam Hodgson
Flowbit Dependencies Sam Hodgson (Sep 20)
Scot Desort via Snort-users
Snort keeps shutting down Scot Desort via Snort-users (Jul 07)
Shane M. Addison via Snort-users
Re: Mode promiscius Shane M. Addison via Snort-users (Jul 28)
Shobhan AyyadevaraSesha (sayyadev) via Snort-users
snort++ automaker error Shobhan AyyadevaraSesha (sayyadev) via Snort-users (Sep 29)
Simi Grewal via Snort-users
Re: NID mode Simi Grewal via Snort-users (Aug 24)
NID mode Simi Grewal via Snort-users (Aug 23)
Simon Dzn via Snort-devel
Snort 3 Architecture Simon Dzn via Snort-devel (Jul 23)
Unknown rule keyword Simon Dzn via Snort-devel (Jul 06)
sithong khamphat via Snort-users
Hi sithong khamphat via Snort-users (Aug 22)
Snort Releases
2.9.11.0 beta has been released! Snort Releases (Aug 10)
soc soc via Snort-users
Re: Question about 'TCP distributed portscan' signature soc soc via Snort-users (Jul 27)
Question about 'TCP distributed portscan' signature soc soc via Snort-users (Jul 26)
Re: Question about 'TCP distributed portscan' signature soc soc via Snort-users (Jul 26)
Stéphane Descary via Snort-users
Re: Snort 3 Config File Question (2) Stéphane Descary via Snort-users (Jul 19)
stephane Eteme via Snort-users
(no subject) stephane Eteme via Snort-users (Sep 13)
Steven Sturges via Snort-devel
Re: Average delay per packet observation Steven Sturges via Snort-devel (Jul 07)
Re: Average delay per packet observation Steven Sturges via Snort-devel (Jul 07)
Re: Average delay per packet observation Steven Sturges via Snort-devel (Jul 05)
Steve Song via Snort-users
How to detect top uploads and downloads per day Steve Song via Snort-users (Aug 14)
Sudhir Desai via Snort-devel
precompiled so_rules for arm Sudhir Desai via Snort-devel (Sep 06)
Re: precompiled so_rules for arm Sudhir Desai via Snort-devel (Sep 06)
Sujit Ghosal via Snort-users
Re: Start up Error Sujit Ghosal via Snort-users (Jul 06)
Sumit Balodi via Snort-users
Conf issue Sumit Balodi via Snort-users (Aug 12)
Config issues Sumit Balodi via Snort-users (Aug 12)
Port scanning and dos detection Sumit Balodi via Snort-users (Aug 13)
Syed Tariq Mustafa
Re: IDS Syed Tariq Mustafa (Jul 10)
tantioification . via Snort-users
Portscan Rule tantioification . via Snort-users (Jul 11)
Re: Testing Rule tantioification . via Snort-users (Jul 11)
Testing Rule tantioification . via Snort-users (Jul 08)
Thomas Bounds
Re: rule exclusion by content Thomas Bounds (Jul 13)
tom . barbette
Re: Limits of Snort TCP reconstruction tom . barbette (Sep 01)
Limits of Snort TCP reconstruction tom . barbette (Aug 31)
Re: Limits of Snort TCP reconstruction tom . barbette (Aug 31)
Turritopsis Dohrnii Teo En Ming via Snort-users
Teo En Ming's Guide to Passing the Cisco Certified Network Associate (CCNA) Exams Turritopsis Dohrnii Teo En Ming via Snort-users (Aug 19)
Tyler Montier
Re: Fw: CVE-2017-9810, CVE-2017-9812 Signatures Tyler Montier (Jul 31)
Re: CVE-2017-11587,11588 sigs Tyler Montier (Aug 15)
Re: Osx.Trojan.Mughthesec Tyler Montier (Aug 15)
Re: Win.Trojan.CowerSnail signatures Tyler Montier (Jul 31)
Re: CVE-2017-9035 sigs Tyler Montier (Aug 15)
Re: CVE-2017-12754 sigs Tyler Montier (Aug 15)
Re: Fw: CVE-2017-6316 Signature Tyler Montier (Jul 31)
Re: New sig for detecting Ubiquiti Networks UniFi Cloud Key Firm v0.6.1 Host RCE Tyler Montier (Aug 14)
Victor Roemer via Snort-devel
Re: Configure Snort with --enable-test-coverage Victor Roemer via Snort-devel (Jul 24)
Re: Configure Snort with --enable-test-coverage Victor Roemer via Snort-devel (Jul 24)
Victor Roemer via Snort-users
Re: Snort 3 Config File Question (3) Victor Roemer via Snort-users (Jul 24)
William Pearson
BASE is showing "Snort Alert" and sid instead of the message field. William Pearson (Sep 19)
Question William Pearson (Sep 22)
Re: Question William Pearson (Sep 22)
Will via Snort-sigs
Alerts for OOXML and MOX Will via Snort-sigs (Sep 03)
wkitty42
Re: Snort 3 Config File Question (3) wkitty42 (Jul 25)
Re: (no subject) wkitty42 (Aug 02)
Re: Testing Rule wkitty42 (Jul 11)
Re: Fw: Content Rule problem wkitty42 (Sep 17)
Re: Alerts for OOXML and MOX wkitty42 (Sep 03)
Re: (no subject) wkitty42 (Aug 18)
Re: Outdated rules wkitty42 (Aug 28)
Re: Question wkitty42 (Sep 23)
Re: oinkcode not working for VRT rules wkitty42 (Jul 25)
Re: Snort-users Digest, Vol 3, Issue 30 wkitty42 (Aug 23)
Re: Misc UPNP Attak on my two network devices (a modem and a routeur) wkitty42 (Sep 22)
Re: NIPS Rules wkitty42 (Aug 22)
Re: rule exclusion by content wkitty42 (Jul 13)
Re: Signature Problem wkitty42 (Sep 08)
Re: Question wkitty42 (Sep 22)
Re: How to make snort detect sid-msg.map wkitty42 (Aug 01)
Re: Get rules of Snort wkitty42 (Sep 13)
Re: Config issues wkitty42 (Aug 12)
Re: Mode promiscius wkitty42 (Jul 28)
Re: Mapping rules to policies wkitty42 (Sep 28)
Re: Snort++ Problem with Rules wkitty42 (Aug 09)
Re: pcre/regex help wkitty42 (Sep 29)
Re: NIPS Rules wkitty42 (Aug 21)
Y M via Snort-sigs
Win.Trojan.CowerSnail signatures Y M via Snort-sigs (Jul 31)
CVE-2017-9035 sigs Y M via Snort-sigs (Aug 15)
Osx.Trojan.Mughthesec Y M via Snort-sigs (Aug 15)
Fw: CVE-2017-9810, CVE-2017-9812 Signatures Y M via Snort-sigs (Jul 31)
CVE-2017-12754 sigs Y M via Snort-sigs (Aug 15)
Fw: CVE-2017-6316 Signature Y M via Snort-sigs (Jul 31)
Re: Detecting bad UDP Header in packet Y M via Snort-sigs (Aug 15)
CVE-2017-11587,11588 sigs Y M via Snort-sigs (Aug 15)
Yoelvis Pozo via Snort-sigs
Re: Please remove me from this list Yoelvis Pozo via Snort-sigs (Jul 13)
Михаил Локтионов via Snort-users
(no subject) Михаил Локтионов via Snort-users (Aug 15)