Snort mailing list archives
Re: Signatures Question
From: "Joel Esler \(jesler\) via Snort-sigs" <snort-sigs () lists snort org>
Date: Mon, 11 Mar 2019 12:44:53 +0000
You're probably going to want to take a look at the registered or subscriber ruleset for rules like that. The community ruleset is comprised mostly of rules written by our community (there are a bunch of exceptions to this). -- Joel Esler Manager, Communities Division Cisco Talos Intelligence Group http://www.talosintelligence.com On Mar 4, 2019, at 7:04 AM, Shmuel Gihon <sgihon () allot com<mailto:sgihon () allot com>> wrote: Hi All, I saw that in the community rules there are not IoT malware related signatures like Mirai, Hajime and reaper. Which DB do contain this signatures? Enterprise? Thanks in advance. This message is intended only for the designated recipient(s). It may contain confidential or proprietary information. If you are not the designated recipient, you may not review, copy or distribute this message. If you have mistakenly received this message, please notify the sender by a reply e-mail and delete this message. Thank you. _______________________________________________ Snort-sigs mailing list Snort-sigs () lists snort org<mailto:Snort-sigs () lists snort org> https://lists.snort.org/mailman/listinfo/snort-sigs Please visit http://blog.snort.org<http://blog.snort.org/> for the latest news about Snort! Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette Visit the Snort.org<http://snort.org/> to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a href=" https://snort.org/downloads/#rule-downloads">emerging threats</a>!
_______________________________________________ Snort-sigs mailing list Snort-sigs () lists snort org https://lists.snort.org/mailman/listinfo/snort-sigs Please visit http://blog.snort.org for the latest news about Snort! Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a href=" https://snort.org/downloads/#rule-downloads">emerging threats</a>!
Current thread:
- Signatures Question Shmuel Gihon (Mar 11)
- Re: Signatures Question Joel Esler (jesler) via Snort-sigs (Mar 11)