Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Extract required headers

From: Russ <rucombs () cisco com>
Date: Sun, 21 May 2017 07:23:29 -0400
This question is way too vague to get a good answer.  What do you mean 
by "extract" and "required"?  Eg Snort can dump the headers in sniffer 
mode and Snort can log the packets, including headers, associated with 
alerts.

On 5/20/17 11:16 PM, ‫moon sun‬ ‫ wrote:

Is there's a way to extract required headers in snort ?
------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!



------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
Previous By Date Next
Previous By Thread Next

Current thread: