Snort mailing list archives
Re: [Snort-devel] Testing my own rules/signatures on pcap file
From: Beenish Raza <beenish.raza () hotmail com>
Date: Mon, 23 Dec 2013 14:48:36 +0500
Thanks.
Subject: Re: [Snort-users] [Snort-devel] Testing my own rules/signatures on pcap file To: jesler () cisco com; beenish.raza () hotmail com CC: snort-users () lists sourceforge net; snort-devel () lists sourceforge net From: guillaume.daleux () gmail com Date: Mon, 23 Dec 2013 05:55:14 +0000 Hi, “Secondly, is there any way that I can generate a pcap file from a given ruleset?“ --> yes you can use rule2alert : https://github.com/pevma/rule2alert Guillaume Envoyé avec mon Smartphone BlackBerry® de Free -----Original Message----- From: "Joel Esler (jesler)" <jesler () cisco com> Date: Mon, 23 Dec 2013 00:25:37 To: Beenish Raza<beenish.raza () hotmail com> Cc: Snort Users<snort-users () lists sourceforge net>; snort-devel () lists sourceforge net<snort-devel () lists sourceforge net> Subject: Re: [Snort-users] [Snort-devel] Testing my own rules/signatures on pcap file ------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
------------------------------------------------------------------------------ Rapidly troubleshoot problems before they affect your business. Most IT organizations don't have a clear picture of how application performance affects their revenue. With AppDynamics, you get 100% visibility into your Java,.NET, & PHP application. Start your 15-day FREE TRIAL of AppDynamics Pro! http://pubads.g.doubleclick.net/gampad/clk?id=84349831&iu=/4140/ostg.clktrk
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- Testing my own rules/signatures on pcap file Beenish Raza (Dec 22)
- Re: Testing my own rules/signatures on pcap file Joel Esler (jesler) (Dec 22)
- Re: [Snort-devel] Testing my own rules/signatures on pcap file guillaume . daleux (Dec 22)
- Re: [Snort-devel] Testing my own rules/signatures on pcap file Beenish Raza (Dec 30)
- Re: [Snort-devel] Testing my own rules/signatures on pcap file guillaume . daleux (Dec 22)
- Re: Testing my own rules/signatures on pcap file Joel Esler (jesler) (Dec 22)