Snort: by thread
618 messages
starting Apr 01 18 and
ending Jun 30 18
Date index |
Thread index |
Author index
- -V 2.9.7.0 GRE rules Sean Fingers via Snort-sigs (Apr 01)
- Re: -V 2.9.7.0 GRE rules Y M via Snort-sigs (Apr 01)
- Blocking Psiphon Syed Anas via Snort-sigs (Apr 01)
- Re: Blocking Psiphon Y M via Snort-sigs (Apr 01)
- Re: [Snort-openappid] Snort Rule Jaco Toledo (Apr 01)
- Re: [PATCH] daq: fix build against the musl C library Sergio Prado (Apr 02)
- Re: [PATCH] daq: fix build against the musl C library Joel Esler (jesler) via Snort-devel (Apr 02)
- Re: [PATCH] daq: fix build against the musl C library Sergio Prado (Apr 04)
- Re: [PATCH] daq: fix build against the musl C library Joel Esler (jesler) via Snort-devel (Apr 02)
- Re: [PATCH] snort: fix cross compilation errors Sergio Prado (Apr 02)
- Re: [PATCH] snort: fix cross compilation errors Joel Esler (jesler) via Snort-devel (Apr 02)
- Re: [PATCH] snort: fix cross compilation errors Sergio Prado (Apr 04)
- Re: [PATCH] snort: fix cross compilation errors Joel Esler (jesler) via Snort-devel (Apr 02)
- Re: snort with daq inline mode problem Joel Esler (jesler) via Snort-users (Apr 02)
- Odp: Re: snort with daq inline mode problem pawelsw1 (Apr 03)
- Re: snort rule to detect HTTP POST data Joel Esler (jesler) via Snort-users (Apr 02)
- Re: snort rule to detect HTTP POST data Al Lewis (allewi) via Snort-users (Apr 03)
- <Possible follow-ups>
- Re: snort rule to detect HTTP POST data Neeraj Shah (Apr 03)
- Win.Trojan.Bandios Y M via Snort-sigs (Apr 03)
- Re: Win.Trojan.Bandios Phillip Lee (Apr 03)
- Osx.Trojan.Coldroot Y M via Snort-sigs (Apr 03)
- Re: Osx.Trojan.Coldroot Phillip Lee (Apr 03)
- Re: Osx.Trojan.Coldroot Phillip Lee (Apr 10)
- Re: Osx.Trojan.Coldroot Phillip Lee (Apr 03)
- Win.Torjan.NeutrinoPOS variant Y M via Snort-sigs (Apr 03)
- Re: Win.Torjan.NeutrinoPOS variant Phillip Lee (Apr 03)
- Re: Win.Torjan.NeutrinoPOS variant Ernest Johnson via Snort-sigs (May 08)
- Re: Win.Torjan.NeutrinoPOS variant Phillip Lee (Apr 03)
- CVE-2018-7171 and CVE-2018-9148 Y M via Snort-sigs (Apr 03)
- Re: CVE-2018-7171 and CVE-2018-9148 Phillip Lee (Apr 03)
- Snort Subscriber Rules Update 2018-04-03 Research (Apr 03)
- unsubscribe Shah, Neeraj A. (IntlCtr) via Snort-users (Apr 03)
- Fwd: unsubscribe Alejandro Aguilar (Apr 03)
- Re: Fwd: unsubscribe billroberts--- via Snort-users (Apr 03)
- Re: Fwd: unsubscribe Al Lewis (allewi) via Snort-users (Apr 03)
- Re: Fwd: unsubscribe Al Lewis (allewi) via Snort-users (Apr 03)
- Re: Fwd: unsubscribe Martin castellanos via Snort-users (Apr 03)
- Re: Fwd: unsubscribe Kelly Alger (Apr 03)
- Re: Fwd: unsubscribe CHARPY Bastien (Apr 03)
- Re: Fwd: unsubscribe Thomas McCourt (tmccourt) via Snort-users (Apr 03)
- Re: Fwd: unsubscribe Dz Gmail via Snort-users (Apr 03)
- Re: Fwd: unsubscribe billroberts--- via Snort-users (Apr 03)
- <Possible follow-ups>
- Re: unsubscribe Al Lewis (allewi) via Snort-users (Apr 03)
- Re: unsubscribe Bill via Snort-users (Apr 03)
- unsubscribe Kashif Tahir (Apr 03)
- Re: unsubscribe Kelly Alger (Apr 03)
- Re: unsubscribe Alimukhtar Aliyev via Snort-users (Apr 03)
- Re: unsubscribe William Cheung (Apr 03)
- Re: unsubscribe Ahmed Ismail via Snort-users (Apr 03)
- Re: unsubscribe Alimukhtar Aliyev via Snort-users (Apr 04)
- Unsubscribe Marc Cozzi via Snort-users (May 02)
- Re: Unsubscribe Mkultra via Snort-users (May 02)
- Unsubscribe Nathan D'Elboux via Snort-devel (Jun 02)
- Fwd: unsubscribe Alejandro Aguilar (Apr 03)
- Portscan/portswep report rugg . vale (Apr 03)
- Re: [EXTERNAL] Re: unsubscribe Zunyan Yang via Snort-users (Apr 04)
- Re: [EXTERNAL] Re: unsubscribe Obille, Richard (Apr 04)
- Re: [SUSPICIOUS] Re: [EXTERNAL] Re: unsubscribe Joel Esler (jesler) via Snort-users (Apr 04)
- Re: [SUSPICIOUS] Re: [EXTERNAL] Re: unsubscribe Vaidehi Kakodkar via Snort-users (Apr 04)
- Re: [EXTERNAL] Re: unsubscribe mokamaco--- via Snort-users (Apr 04)
- Re: [EXTERNAL] Re: unsubscribe Johan Bernhardsson via Snort-users (Apr 04)
- (no subject) Javier Salazar via Snort-users (Apr 04)
- Re: (no subject) Joel Esler (jesler) via Snort-users (Apr 04)
- Re: (no subject) wkitty42 (Apr 04)
- Re: (no subject) Thomas McCourt (tmccourt) via Snort-users (Apr 04)
- Re: (no subject) Sean Duchstein via Snort-users (Apr 04)
- Re: (no subject) Mac Moraniec (Apr 04)
- Re: (no subject) Joel Esler (jesler) via Snort-users (Apr 04)
- Re: (no subject) Joel Esler (jesler) via Snort-users (Apr 04)
- Re: (no subject) Victor Roemer via Snort-users (Apr 04)
- Re: (no subject) Johan Bernhardsson via Snort-users (Apr 04)
- Re: (no subject) Kelly Alger (Apr 04)
- Re: (no subject) Ian Caauwe (Apr 04)
- Re: (no subject) Joel Esler (jesler) via Snort-users (Apr 04)
- Re: (no subject) Jason Simsay via Snort-users (Apr 04)
- Re: (no subject) Joel Esler (jesler) via Snort-users (Apr 04)
- Re: (no subject) wkitty42 (Apr 04)
- <Possible follow-ups>
- (no subject) Dorian ROSSE (May 25)
- Re: (no subject) Russ via Snort-devel (May 25)
- (no subject) BeYourSelf BeYourSelf via Snort-sigs (May 31)
- (no subject) Dorian ROSSE (Jun 15)
- (no subject) gitay yaniv via Snort-users (Jun 25)
- Re: (no subject) Thomas McCourt (tmccourt) via Snort-users (Jun 25)
- (no subject) Ogy Pramarta via Snort-users (Jun 25)
- Re: (no subject) Thomas McCourt (tmccourt) via Snort-users (Jun 25)
- Re: (no subject) B via Snort-users (Jun 25)
- Re: (no subject) Wm. Josiah Erikson (Jun 25)
- Re: (no subject) Thomas McCourt (tmccourt) via Snort-users (Jun 25)
- Re: (no subject) Thomas McCourt (tmccourt) via Snort-users (Jun 25)
- Re: (no subject) Wm. Josiah Erikson (Jun 25)
- Re: (no subject) Thomas McCourt (tmccourt) via Snort-users (Jun 25)
- Re: (no subject) Joel Esler (jesler) via Snort-users (Apr 04)
- Unsubscribing from the list Joel Esler (jesler) via Snort-users (Apr 04)
- Submission for IOCs James via Snort-sigs (Apr 05)
- Re: Submission for IOCs Nick Randolph (Apr 05)
- Re: Submission for IOCs James via Snort-sigs (Apr 05)
- Re: Submission for IOCs Ronny Vaningh (Apr 08)
- Re: Submission for IOCs Mkultra via Snort-sigs (Apr 08)
- Re: Submission for IOCs Antonis (Apr 08)
- Re: Submission for IOCs David Sanders via Snort-sigs (Apr 08)
- Re: Submission for IOCs James via Snort-sigs (Apr 08)
- Re: Submission for IOCs James via Snort-sigs (Apr 05)
- Re: Submission for IOCs Nick Randolph (Apr 05)
- Troubles in paradise angel romero esquivel via Snort-users (Apr 05)
- Re: Troubles in paradise Jason Hellenthal (Apr 05)
- Re: Troubles in paradise Marcin Dulak via Snort-users (Apr 05)
- <Possible follow-ups>
- Re: Troubles in paradise epoupee () ac-rennes fr (Apr 05)
- Re: Troubles in paradise wkitty42 (Apr 05)
- Re: Troubles in paradise Alberto Colosi via Snort-users (Apr 05)
- Re: Troubles in paradise wkitty42 (Apr 06)
- Re: Troubles in paradise Alberto Colosi via Snort-users (Apr 06)
- Re: Troubles in paradise wkitty42 (Apr 05)
- Snort Subscriber Rules Update 2018-04-05 Research (Apr 05)
- Snort Blog: Requiring at least TLS 1.2 for Snort.org Joel Esler (jesler) via Snort-devel (Apr 06)
- Question fjrohlf via Snort-users (Apr 06)
- Re: Question Alberto Colosi via Snort-users (Apr 06)
- Re: Question F. James Rohlf via Snort-users (Apr 06)
- Re: Question Alberto Colosi via Snort-users (Apr 08)
- Re: Question F. James Rohlf via Snort-users (Apr 06)
- Re: Question Alberto Colosi via Snort-users (Apr 06)
- Snort install on windows CJ Lorenz via Snort-users (Apr 06)
- Re: Snort install on windows Lee Brown (Apr 06)
- Re: Snort install on windows Lee Brown (Apr 09)
- Re: Snort install on windows Lee Brown (Apr 06)
- mysql support is not compiled into this build of snort 2014/2015 - Nsabimana Thierry (Apr 07)
- Re: mysql support is not compiled into this build of snort Al Lewis (allewi) via Snort-users (Apr 07)
- Re: mysql support is not compiled into this build of snort wkitty42 (Apr 07)
- Re: mysql support is not compiled into this build of snort Marcin Dulak via Snort-users (Apr 07)
- Re: mysql support is not compiled into this build of snort wkitty42 (Apr 07)
- Re: mysql support is not compiled into this build of snort Joel Esler (jesler) via Snort-users (Apr 07)
- Re: mysql support is not compiled into this build of snort Jim Campbell (Apr 08)
- Re: mysql support is not compiled into this build of snort wkitty42 (Apr 08)
- Re: mysql support is not compiled into this build of snort 2014/2015 - Nsabimana Thierry (Apr 08)
- Re: mysql support is not compiled into this build of snort Marcin Dulak via Snort-users (Apr 07)
- Re: mysql support is not compiled into this build of snort Diamond Foyer (Apr 07)
- Final Year Project Custom MySQL Database Server Rules and Classifications Review Jack Eastwood via Snort-devel (Apr 08)
- Re: Final Year Project Custom MySQL Database Server Rules and Classifications Review DFIRob via Snort-devel (Apr 10)
- Re: [Snort-devel] Final Year Project Custom MySQL Database Server Rules and Classifications Review Mkultra via Snort-users (Apr 13)
- Re: [Snort-devel] Final Year Project Custom MySQL Database Server Rules and Classifications Review DFIRob via Snort-users (Apr 13)
- Re: [Snort-devel] Final Year Project Custom MySQL Database Server Rules and Classifications Review Mkultra via Snort-users (Apr 13)
- Re: Final Year Project Custom MySQL Database Server Rules and Classifications Review DFIRob via Snort-devel (Apr 10)
- UDP capture packet issue rugg . vale (Apr 08)
- Re: UDP capture packet issue Al Lewis (allewi) via Snort-users (Apr 09)
- Re: UDP capture packet issue wkitty42 (Apr 09)
- Re: UDP capture packet issue James Lay (Apr 09)
- <Possible follow-ups>
- Re: UDP capture packet issue rugg . vale (Apr 09)
- Re: UDP capture packet issue Al Lewis (allewi) via Snort-users (Apr 09)
- Re: UDP capture packet issue rugg . vale (Apr 09)
- Re: UDP capture packet issue Al Lewis (allewi) via Snort-users (Apr 09)
- Snort Subscriber Rules Update 2018-04-10 Research (Apr 10)
- Re: unifed2 log conf file via Snort-devel (Apr 11)
- Snort Subscriber Rules Update 2018-04-12 Research (Apr 12)
- Re: Snort-sigs Digest, Vol 10, Issue 20 Briana Magana via Snort-sigs (Apr 13)
- Re: Snort-sigs Digest, Vol 10, Issue 20 Joel Esler (jesler) via Snort-sigs (Apr 13)
- Re: Snort-sigs Digest, Vol 10, Issue 6 Briana Magana via Snort-sigs (Apr 13)
- Microsoft Vulnerability CVE-2018-0950 אחיעד גלרנטר via Snort-sigs (Apr 15)
- Snort Subscriber Rules Update 2018-04-17 Research (Apr 17)
- Updating sid-msg.map after adding custom rule Black Lion via Snort-users (Apr 18)
- Re: Updating sid-msg.map after adding custom rule Y M via Snort-users (Apr 21)
- Re: Updating sid-msg.map after adding custom rule Black Lion via Snort-users (Apr 25)
- Re: Updating sid-msg.map after adding custom rule Black Lion via Snort-users (Apr 25)
- Microsoft Vulnerability CVE-2018-0950 Achiad Gelerenter (Apr 18)
- alert vs drop Андрей Пегов via Snort-users (Apr 18)
- FWD: alert vs drop Андрей Пегов via Snort-devel (Apr 16)
- Re: alert vs drop Y M via Snort-users (Apr 21)
- <Possible follow-ups>
- Re: alert vs drop Андрей Пегов via Snort-users (Apr 25)
- snort not working Mohammad Arif via Snort-users (Apr 18)
- Re: snort not working Y M via Snort-users (Apr 21)
- Buidling IDS / IPS on existing Elasticsearch cluster using Snort Shivkumar Mallesappa via Snort-users (Apr 18)
- Re: Buidling IDS / IPS on existing Elasticsearch cluster using Snort Y M via Snort-users (Apr 21)
- Snort Subscriber Rules Update 2018-04-19 Research (Apr 19)
- Error when analyzing pcap file Mokshay Gungah via Snort-users (Apr 21)
- snort-2.9.11.1 mysql schema missing? 2014/2015 - Nsabimana Thierry (Apr 22)
- Re: snort-2.9.11.1 mysql schema missing? Joel Esler (jesler) via Snort-users (Apr 23)
- Re: snort-2.9.11.1 mysql schema missing? 2014/2015 - Nsabimana Thierry (Apr 24)
- Re: snort-2.9.11.1 mysql schema missing? Joel Esler (jesler) via Snort-users (Apr 25)
- Re: snort-2.9.11.1 mysql schema missing? 2014/2015 - Nsabimana Thierry (Apr 24)
- Re: snort-2.9.11.1 mysql schema missing? wkitty42 (Apr 23)
- Re: snort-2.9.11.1 mysql schema missing? Y M via Snort-users (Apr 23)
- Re: snort-2.9.11.1 mysql schema missing? Joel Esler (jesler) via Snort-users (Apr 23)
- TcpLen Rule Option Ibrahim Ahmed via Snort-users (Apr 23)
- End of year report stephane Eteme via Snort-users (Apr 24)
- Re: End of year report Al Lewis (allewi) via Snort-users (Apr 25)
- Re: End of year report wkitty42 (Apr 25)
- Snort Subscriber Rules Update 2018-04-24 Research (Apr 24)
- Requiring at least TLS 1.2 for Rules Updates Hassan Alsaffar via Snort-users (Apr 25)
- Re: Requiring at least TLS 1.2 for Rules Updates Joel Esler (jesler) via Snort-users (Apr 25)
- Moderation Joel Esler (jesler) via Snort-users (Apr 25)
- Re: Moderation Lucas K. Smith via Snort-users (Apr 25)
- [HITB-Announce] HITBGSEC2018 CFP - Final Call Hafez Kamal (Apr 26)
- Snort Subscriber Rules Update 2018-04-26 Research (Apr 26)
- Zebrocy family sigs Y M via Snort-sigs (Apr 27)
- Re: Zebrocy family sigs Phillip Lee (Apr 27)
- Reflow JS Backdoor sigs Y M via Snort-sigs (Apr 27)
- Win.Trojan.Proxysvc Y M via Snort-sigs (Apr 27)
- Re: Win.Trojan.Proxysvc Phillip Lee (Apr 27)
- FakeUpdates campaign sig Y M via Snort-sigs (Apr 27)
- Re: FakeUpdates campaign sig Phillip Lee (Apr 27)
- Win.Trojan.Kwampirs Y M via Snort-sigs (Apr 27)
- Re: Win.Trojan.Kwampirs Phillip Lee (Apr 27)
- Ads data leaks sigs Y M via Snort-sigs (Apr 27)
- Re: Ads data leaks sigs Phillip Lee (Apr 27)
- Re: Ads data leaks sigs Phillip Lee (May 17)
- Re: Ads data leaks sigs Phillip Lee (Apr 27)
- CVE-2018-1143, CVE-2018-1144, CVE-2018-1146 Y M via Snort-sigs (Apr 27)
- Re: CVE-2018-1143, CVE-2018-1144, CVE-2018-1146 Phillip Lee (Apr 27)
- Re: CVE-2018-1143, CVE-2018-1144, CVE-2018-1146 David (Apr 27)
- Re: CVE-2018-1143, CVE-2018-1144, CVE-2018-1146 Y M via Snort-sigs (Apr 27)
- CVE-2018-10173 Y M via Snort-sigs (Apr 27)
- Re: CVE-2018-10173 James Lay (Apr 27)
- Re: CVE-2018-10173 Phillip Lee (May 17)
- Re: CVE-2018-10173 James via Snort-sigs (May 17)
- Re: CVE-2018-10173 Phillip Lee (May 17)
- Re: CVE-2018-10173 Phillip Lee (Apr 27)
- Re: CVE-2018-10173 James Lay (Apr 27)
- Multiple recon sigs Y M via Snort-sigs (Apr 27)
- tls1.3 support for 'ssl_version' and DTLS Joshua Kinard via Snort-devel (Apr 30)
- Re: tls1.3 support for 'ssl_version' and DTLS Russ via Snort-devel (Apr 30)
- Re: tls1.3 support for 'ssl_version' and DTLS Joshua Kinard via Snort-devel (Apr 30)
- Re: tls1.3 support for 'ssl_version' and DTLS Russ via Snort-devel (Apr 30)
- Configuring the acidbase GUI Patrick Biyaga via Snort-users (Apr 30)
- Re: Configuring the acidbase GUI Joel Esler (jesler) via Snort-users (Apr 30)
- Snort Subscriber Rules Update 2018-05-01 Research (May 01)
- Osx.Trojan.OceanLotus variant Y M via Snort-sigs (May 01)
- Re: Osx.Trojan.OceanLotus variant Phillip Lee (May 01)
- Win.Trojan.COMRat Y M via Snort-sigs (May 01)
- Re: Win.Trojan.COMRat Phillip Lee (May 01)
- Win.Trojan.Qarallax (QRAT) Y M via Snort-sigs (May 01)
- Re: Win.Trojan.Qarallax (QRAT) Phillip Lee (May 01)
- Win.Ransomware.Satan Y M via Snort-sigs (May 01)
- Re: Win.Ransomware.Satan Phillip Lee (May 01)
- CVE-2018-8733, CVE-2018-8734, CVE-2018-8735 Y M via Snort-sigs (May 01)
- Re: CVE-2018-8733, CVE-2018-8734, CVE-2018-8735 Phillip Lee (May 01)
- Win.Trojan.RedLeaves variant Y M via Snort-sigs (May 01)
- Re: Win.Trojan.RedLeaves variant Phillip Lee (May 02)
- Win.Trojan.DoubleAgent Y M via Snort-sigs (May 01)
- Re: Win.Trojan.DoubleAgent Phillip Lee (May 02)
- all good Víctor Vásquez via Snort-users (May 01)
- Pulledpork error at blacklist download David Corsello (May 02)
- Re: Pulledpork error at blacklist download David Corsello (May 02)
- Re: Pulledpork error at blacklist download Joel Esler (jesler) via Snort-users (May 02)
- Discard Packet rugg . vale (May 02)
- Snort Subscriber Rules Update 2018-05-03 Research (May 03)
- Andr.Trojan.ZooPark family Y M via Snort-sigs (May 07)
- Re: Andr.Trojan.ZooPark family Phillip Lee (May 07)
- Kubernetes kubelet API Y M via Snort-sigs (May 07)
- Re: Kubernetes kubelet API Phillip Lee (May 07)
- Win.Trojan.Dunihi Y M via Snort-sigs (May 07)
- Re: Win.Trojan.Dunihi Phillip Lee (May 07)
- <Possible follow-ups>
- Re: Win.Trojan.Dunihi Ernest Johnson via Snort-sigs (May 08)
- Re: Win.Trojan.Dunihi Joel Esler (jesler) via Snort-sigs (May 08)
- Re: Win.Trojan.Dunihi Ernest Johnson via Snort-sigs (May 08)
- Re: Win.Trojan.Dunihi Joel Esler (jesler) via Snort-sigs (May 08)
- Re: Win.Trojan.Dunihi Joel Esler (jesler) via Snort-sigs (May 08)
- Snort Subscriber Rules Update 2018-05-08 Research (May 08)
- Problem with unified2 files joseph m via Snort-users (May 08)
- Re: Problem with unified2 files wkitty42 (May 14)
- Re: Problem with unified2 files joseph m via Snort-users (May 15)
- Message not available
- Re: Problem with unified2 files joseph m via Snort-users (May 18)
- Re: Problem with unified2 files joseph m via Snort-users (May 15)
- Re: Problem with unified2 files wkitty42 (May 14)
- Re: backdoored ssh-decorator package wkitty42 (May 10)
- Re: backdoored ssh-decorator package Phillip Lee (May 10)
- Re: backdoored ssh-decorator package Y M via Snort-sigs (May 10)
- Re: backdoored ssh-decorator package Y M via Snort-sigs (May 10)
- Re: backdoored ssh-decorator package wkitty42 (May 10)
- Re: backdoored ssh-decorator package Phillip Lee (May 10)
- Re: Classtype Map Error Al Lewis (allewi) via Snort-users (May 16)
- Re: Classtype Map Error Sujit Ghosal via Snort-users (May 17)
- Re: Classtype Map Error wkitty42 (May 18)
- Re: Classtype Map Error Sujit Ghosal via Snort-users (May 17)
- Re: Snort IDS doesn't log the alerts in the path /var/log/snort Al Lewis (allewi) via Snort-users (May 16)
- <Possible follow-ups>
- Decoder rule: how to set traffic that must be inspected ? oleg gv via Snort-users (May 17)
- Re: Rule Needed Alex McDonnell (May 16)
- Re: Rule Needed Beshoy Atef via Snort-sigs (May 16)
- Re: Rule Needed Beshoy Atef via Snort-sigs (May 16)
- Re: Rule Needed Phillip Lee (May 16)
- Re: Rule Needed Beshoy Atef via Snort-sigs (May 17)
- Re: How to debugging on Snort? Al Lewis (allewi) via Snort-devel (May 17)
- Re: How to debugging on Snort? James via Snort-devel (May 17)
- Re: How to debugging on Snort? Joel Esler (jesler) via Snort-devel (May 18)
- Re: How to debugging on Snort? James via Snort-devel (May 17)
- Re: How to debugging on Snort? Russ via Snort-devel (May 17)
- Re: ID number in pcap files (Darpa 99) Al Lewis (allewi) via Snort-users (May 19)
- Re: ID number in pcap files (Darpa 99) wkitty42 (May 19)
- Re: Updating snort rules via pulledpork, failing Philip Robson via Snort-users (May 19)
- Re: Can Snort detect a download file from internet? Hào Tài via Snort-sigs (May 21)
- Re: Can Snort detect a download file from internet? Antonio Leding (May 21)
- Re: Can Snort detect a download file from internet? Antonio Leding (May 21)
- Re: Can Snort detect a download file from internet? Joel Esler (jesler) via Snort-sigs (May 21)
- Re: Can Snort detect a download file from internet? Antonio Leding (May 21)
- Re: Can Snort detect a download file from internet? Russ via Snort-sigs (May 21)
- Re: Can Snort detect a download file from internet? Al Lewis (allewi) via Snort-sigs (May 21)
- Message not available
- Re: Can Snort detect a download file from internet? Tai Ly via Snort-sigs (May 22)
- Re: Can Snort detect a download file from internet? Tai Ly via Snort-sigs (May 22)
- Re: Can Snort detect a download file from internet? Al Lewis (allewi) via Snort-sigs (May 22)
- ?????? Can Snort detect a download file from internet? Zer0d0y via Snort-sigs (May 24)
- Re: 回复: Can Snort detect a download file from internet? James via Snort-sigs (May 24)
- Re: Can Snort detect a download file from internet? Antonio Leding (May 21)
- Re: Missing rules - Advisory 2018-05-17 Joel Esler (jesler) via Snort-sigs (May 21)
- Re: Missing rules - Advisory 2018-05-17 Y M via Snort-sigs (May 21)
- Re: Missing rules - Advisory 2018-05-17 Joel Esler (jesler) via Snort-sigs (May 21)
- Re: Missing rules - Advisory 2018-05-17 Y M via Snort-sigs (May 21)
- Re: Rules included in the VRT base policies Y M via Snort-sigs (May 20)
- Re: Critical: Memory leak in snort 2.9 and FreeBSD >= 10.4 James via Snort-devel (May 24)
- Re: Critical: Memory leak in snort 2.9 and FreeBSD >= 10.4 Carter Waxman (cwaxman) via Snort-devel (May 25)
- Re: Critical: Memory leak in snort 2.9 and FreeBSD >= 10.4 elof (May 26)
- Re: Critical: Memory leak in snort 2.9 and FreeBSD >= 10.4 Lokesh Bevinamarad (lbevinam) via Snort-devel (May 28)
- Re: Critical: Memory leak in snort 2.9 and FreeBSD >= 10.4 elof (May 26)
- Re: BITSAdmin Upload Nick Randolph (May 30)
- Re: BITSAdmin Upload O C via Snort-sigs (May 30)
- Re: How to launch snort as an all time scanner network for a DHCP network scanner Joel Esler (jesler) via Snort-users (May 29)
- Re: How to launch snort as an all time scanner network for a DHCP network scanner Mark W. Jeanmougin via Snort-users (May 29)
- Re: Wireshnork or other 'Snort for Wireshark' tool? Joel Esler (jesler) via Snort-users (May 29)
- Re: SID 1-44076 Suspicious .trade dns query Joel Esler (jesler) via Snort-sigs (May 29)
- Re: SID 1-44076 Suspicious .trade dns query wkitty42 (May 29)
- Re: GET SOME TROUBLE CONFIGURING SNORT 3 wkitty42 (May 29)
- Re: GET SOME TROUBLE CONFIGURING SNORT 3 Russ via Snort-users (May 30)
- Re: ThreadKit Documents John Levy (May 30)
- Re: ThreadKit Documents Y M via Snort-sigs (May 30)
- Re: ThreadKit Documents Y M via Snort-sigs (Jun 04)
- Re: ThreadKit Documents John Levy (Jun 05)
- Re: ThreadKit Documents Y M via Snort-sigs (Jun 04)
- Re: Snort-devel Digest, Vol 12, Issue 9 Bhargava Jandhyala (bjandhya) via Snort-devel (May 31)
- Re: how can improve detection of attack by snort 3 Joel Esler (jesler) via Snort-users (May 30)
- Re: how can improve detection of attack by snort 3 bz Os via Snort-users (May 30)
- Re: how can improve detection of attack by snort 3 DFIRob via Snort-users (May 31)
- Re: how can improve detection of attack by snort 3 Joel Esler (jesler) via Snort-users (May 31)
- Re: how can improve detection of attack by snort 3 wkitty42 (May 31)
- Re: how can improve detection of attack by snort 3 bz Os via Snort-users (May 30)
- Re: Now how to launch my scan Mark W. Jeanmougin via Snort-users (May 31)
- Re: Ask for a rogue scan Mark W. Jeanmougin via Snort-sigs (May 31)
- Re: Is pfSense the Best Open Source Firewall/IDS/IPS in the World? Joel Esler (jesler) via Snort-users (May 31)
- Re: Snort 3 Build 245 on FreeBSD Y M via Snort-devel (May 31)
- Re: Snort 3 Build 245 on FreeBSD Russ via Snort-devel (Jun 02)
- Re: Snort 3 Build 245 on FreeBSD Y M via Snort-devel (Jun 02)
- Re: Snort 3 Build 245 on FreeBSD Russ via Snort-devel (Jun 02)
- Re: It is possible to execute NIPS and NIDS together? Cynthia Leonard (cyleonar) via Snort-users (Jun 05)
- Re: It is possible to execute NIPS and NIDS together? Younes Abderrahmane via Snort-users (Jun 10)
- Re: It is possible to execute NIPS and NIDS together? Cynthia Leonard (cyleonar) via Snort-users (Jun 13)
- Re: It is possible to execute NIPS and NIDS together? Younes Abderrahmane via Snort-users (Jun 10)
- <Possible follow-ups>
- It is possible to execute NIPS and NIDS together? Younes Abderrahmane via Snort-users (Jun 04)
- Re: Problem of converting tcpdump.list (.txt) file to pcap format Bruno Riccelli (Jun 06)
- <Possible follow-ups>
- Problem of converting tcpdump.list (.txt) file to pcap format 2014/2015 - Nsabimana Thierry (Jun 06)
- Re: Win.Backdoor.Joanap Alex McDonnell (Jun 07)
- Re: Win.Backdoor.Joanap Y M via Snort-sigs (Jun 07)
- Re: Win.Trojan.Nocturnal John Levy (Jun 12)
- Re: Win.Trojan.Nocturnal Y M via Snort-sigs (Jun 12)
- Re: Snort-sigs Digest, Vol 13, Issue 3 Alex McDonnell (Jun 05)
- Re: CVE-2018-8162 rule David Randolph (Jun 07)
- Re: CVE-2018-8162 rule Joel Esler (jesler) via Snort-sigs (Jun 07)
- Re: Need help on snort documents Al Lewis (allewi) via Snort-devel (Jun 07)
- <Possible follow-ups>
- Need help on snort documents Shefali via Snort-users (Jun 08)
- Re: Snort Rules Sensors wkitty42 (Jun 08)
- Re: Snort Rules Sensors Alex McDonnell (Jun 08)
- Re: Snort-sigs Digest, Vol 12, Issue 50 Mkultra via Snort-sigs (Jun 08)
- Re: Snort-sigs Digest, Vol 12, Issue 50 Mkultra via Snort-sigs (Jun 08)
- Re: Snort-sigs Digest, Vol 12, Issue 50 6vector9telemetry--- via Snort-sigs (Jun 08)
- Re: Snort-sigs Digest, Vol 12, Issue 50 Joel Esler (jesler) via Snort-sigs (Jun 11)
- Re: Snort-sigs Digest, Vol 12, Issue 50 6vector9telemetry--- via Snort-sigs (Jun 08)
- Re: Snort-sigs Digest, Vol 12, Issue 50 Y M via Snort-sigs (Jun 08)
- Re: can we setup acid with snort ++ Joel Esler (jesler) via Snort-users (Jun 13)
- Re: can we setup acid with snort ++ Russ via Snort-users (Jun 13)
- Re: can we setup acid with snort ++ Michael Steele (Jun 13)
- Re: can we setup acid with snort ++ Michael Steele (Jun 13)
- Re: can we setup acid with snort ++ wkitty42 (Jun 14)
- Re: can we setup acid with snort ++ Marcin Dulak via Snort-users (Jun 14)
- Re: can we setup acid with snort ++ Joel Esler (jesler) via Snort-users (Jun 14)
- Re: can we setup acid with snort ++ Noah Dietrich (Jun 14)
- Re: can we setup acid with snort ++ Russ via Snort-users (Jun 13)
- Re: ftp error when testing snort with pytbull Marcin Dulak via Snort-users (Jun 10)
- Re: SNORT Alert Messages Marcin Dulak via Snort-devel (Jun 09)
- Re: SNORT Alert Messages Russ via Snort-devel (Jun 09)
- <Possible follow-ups>
- SNORT Alert Messages İzzettin Erdem via Snort-devel (Jun 09)
- Re: SNORT Alert Messages Y M via Snort-devel (Jun 09)
- Re: SNORT Alert Messages Y M via Snort-devel (Jun 09)
- Re: SNORT Alert Messages Russ via Snort-devel (Jun 09)
- Re: SNORT Alert Messages Y M via Snort-devel (Jun 09)
- Message not available
- Message not available
- Re: Ubuntu 18 and so rules error James Lay (Jun 13)
- Message not available
- Re: Ubuntu 18 and so rules error James Lay (Jun 13)
- Re: Ubuntu 18 and so rules error Russ via Snort-users (Jun 13)
- Re: Ubuntu 18 and so rules error Patrick Mullen (pamullen) via Snort-users (Jun 14)
- Re: Ubuntu 18 and so rules error Y M via Snort-users (Jun 14)
- Re: Ubuntu 18 and so rules error James Lay (Jun 14)
- Re: Ubuntu 18 and so rules error James Lay (Jun 14)
- Re: Ubuntu 18 and so rules error Y M via Snort-users (Jun 14)
- Re: Ubuntu 18 and so rules error Patrick Mullen (pamullen) via Snort-users (Jun 15)
- Re: Ubuntu 18 and so rules error James Lay (Jun 15)
- Re: Ubuntu 18 and so rules error Patrick Mullen (pamullen) via Snort-users (Jun 18)
- Re: Ubuntu 18 and so rules error James Lay (Jun 19)
- Re: Ubuntu 18 and so rules error James Lay (Jun 19)
- Re: Ubuntu 18 and so rules error Russ via Snort-users (Jun 19)
- Re: Ubuntu 18 and so rules error James Lay (Jun 19)
- Re: Ubuntu 18 and so rules error Patrick Mullen (pamullen) via Snort-users (Jun 22)
- Re: Ubuntu 18 and so rules error Y M via Snort-users (Jun 19)
- Re: Ubuntu 18 and so rules error Russ via Snort-users (Jun 19)
- Re: Ubuntu 18 and so rules error James Lay (Jun 20)
- Re: Ubuntu 18 and so rules error James Lay (Jun 20)
- Re: Ubuntu 18 and so rules error James Lay (Jun 26)
- Re: Ubuntu 18 and so rules error Patrick Mullen (pamullen) via Snort-users (Jun 27)
- Re: Ubuntu 18 and so rules error James Lay (Jun 27)
- Re: Ubuntu 18 and so rules error Y M via Snort-users (Jun 28)
- Message not available
- Re: Snort 3 - Custom file magic definitions Ernest Russell via Snort-devel (Jun 10)
- Re: Snort 3 - Custom file magic definitions Michael Altizer via Snort-devel (Jun 10)
- Re: Snort 3 - Custom file magic definitions Y M via Snort-devel (Jun 12)
- Message not available
- Re: Snort 3 - Custom file magic definitions Y M via Snort-devel (Jun 13)
- Re: Snort 3 - Custom file magic definitions Michael Altizer via Snort-devel (Jun 13)
- Re: Snort 3 - Custom file magic definitions Y M via Snort-devel (Jun 12)
- Re: Snort-devel Digest, Vol 13, Issue 7 Al Lewis (allewi) via Snort-devel (Jun 10)
- Re: Snort rule for allowing Logitech Squeezebox streaming service/traffic Al Lewis (allewi) via Snort-users (Jun 13)
- Re: Snort rule for allowing Logitech Squeezebox streaming service/traffic wkitty42 (Jun 13)
- Re: Outlook phishing pattern John Levy (Jun 12)
- Re: Segfault building Snort3 b245 with --enable-tcmalloc flag Y M via Snort-devel (Jun 12)
- Re: Segfault building Snort3 b245 with --enable-tcmalloc flag Y M via Snort-devel (Jun 12)
- Re: Segfault building Snort3 b245 with --enable-tcmalloc flag Noah Dietrich (Jun 12)
- Re: Segfault building Snort3 b245 with --enable-tcmalloc flag Michael Altizer via Snort-devel (Jun 13)
- Re: Segfault building Snort3 b245 with --enable-tcmalloc flag Noah Dietrich (Jun 15)
- Re: Segfault building Snort3 b245 with --enable-tcmalloc flag Michael Altizer via Snort-devel (Jun 18)
- Message not available
- Re: Segfault building Snort3 b245 with --enable-tcmalloc flag Y M via Snort-devel (Jun 13)
- Re: Segfault building Snort3 b245 with --enable-tcmalloc flag Y M via Snort-devel (Jun 12)
- Re: non-fatal warnings when loading snort-extras (with warn-all) Russ via Snort-devel (Jun 12)
- Re: non-fatal warnings when loading snort-extras (with warn-all) Noah Dietrich (Jun 12)
- <Possible follow-ups>
- Snort Subscriber Rules Update 2018-06-12 Research (Jun 12)
- Re: Odd bug when using alert_json plugin Noah Dietrich (Jun 16)
- Re: Odd bug when using alert_json plugin Russ via Snort-devel (Jun 17)
- Re: Flowbits set to isset Russ via Snort-users (Jun 13)
- Re: Flowbits set to isset Patrick Mullen (pamullen) via Snort-users (Jun 13)
- Re: Flowbits set to isset Joel Esler (jesler) via Snort-users (Jun 13)
- Re: how perform snort 3 detection? Y M via Snort-users (Jun 13)
- Re: what is the difference between snort 3 rules and snort v2.9? Y M via Snort-users (Jun 13)
- Re: no preprocessors configured for policy 0 Al Lewis (allewi) via Snort-users (Jun 13)
- Re: File.swf.cff has 2 sections for flowbits? wkitty42 (Jun 14)
- Re: Flowbit Warnings Alex McDonnell (Jun 15)
- Re: Flowbit Warnings wkitty42 (Jun 15)
- Re: Flowbit Warnings wkitty42 (Jun 15)
- Re: Flowbit Warnings Felix Rodríguez (Jun 15)
- Re: Flowbit Warnings wkitty42 (Jun 15)
- Re: Flowbit Warnings Felix Rodríguez (Jun 15)
- Re: Two missing for scan DFIRob via Snort-sigs (Jun 18)
- Re: Snort 3.0 performance issue Carter Waxman (cwaxman) via Snort-users (Jun 19)
- Re: Snort 3.0 performance issue Qinwen Hu (Jun 19)
- Re: Snort 3.0 performance issue Carter Waxman (cwaxman) via Snort-users (Jun 20)
- Re: Snort 3.0 performance issue PUllarao via Snort-users (Jun 20)
- Fwd: Snort 3.0 performance issue Виктор Сурин via Snort-users (Jun 21)
- Re: Snort 3.0 performance issue Qinwen Hu (Jun 19)
- Re: about snort can not auto update rules. wkitty42 (Jun 20)
- Re: [SUSPECTED SPAM] No more mail please Thomas McCourt (tmccourt) via Snort-users (Jun 20)
- Re: White and Blacklist Rules Al Lewis (allewi) via Snort-sigs (Jun 20)
- <Possible follow-ups>
- Re: Unsubscribe me from this list. Thomas McCourt (tmccourt) via Snort-users (Jun 21)
- Re: Logging "pass" rules that are hit Russ via Snort-users (Jun 25)
- Re: Snort 3, IDS mode, Monitor Multiple Interface At Same Time Al Lewis (allewi) via Snort-users (Jun 22)
- Re: Snort 3, IDS mode, Monitor Multiple Interface At Same Time Moojit (Jun 22)
- Re: Snort 3, IDS mode, Monitor Multiple Interface At Same Time Michael Altizer via Snort-users (Jun 25)
- Re: Snort 3, IDS mode, Monitor Multiple Interface At Same Time Moojit (Jun 22)
- Re: header intact Thomas McCourt (tmccourt) via Snort-users (Jun 25)
- Re: do not send me email please Michael Da Cova (Jun 25)
- Re: Multiple signatures John Levy (Jun 27)
- Re: Error Compiling Snort 2.9.11.1 James Lay (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Noah Dietrich (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Lucas Miguel (_theHarvester) via Snort-users (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Y M via Snort-users (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Lucas Miguel (_theHarvester) via Snort-users (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Lucas Miguel (_theHarvester) via Snort-users (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Y M via Snort-users (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Lucas Miguel (_theHarvester) via Snort-users (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Y M via Snort-users (Jun 29)
- Re: Error Compiling Snort 2.9.11.1 Lucas Miguel (_theHarvester) via Snort-users (Jun 29)
- Re: Error Compiling Snort 2.9.11.1 Lucas Miguel (_theHarvester) via Snort-users (Jun 28)
- Re: Error Compiling Snort 2.9.11.1 Noah Dietrich (Jun 28)
- Re: 1:11672, 3:11672 BROWSER-OTHER Mozilla Network Security Services SSLv2 stack overflow attempt Y M via Snort-sigs (Jun 28)
- Re: 1:11672, 3:11672 BROWSER-OTHER Mozilla Network Security Services SSLv2 stack overflow attempt wkitty42--- via Snort-sigs (Jun 28)
- Re: 1:11672, 3:11672 BROWSER-OTHER Mozilla Network Security Services SSLv2 stack overflow attempt Steve Thames via Snort-sigs (Jun 28)
- Re: 1:11672, 3:11672 BROWSER-OTHER Mozilla Network Security Services SSLv2 stack overflow attempt Y M via Snort-sigs (Jun 29)
- Re: 1:11672, 3:11672 BROWSER-OTHER Mozilla Network Security Services SSLv2 stack overflow attempt Steve Thames via Snort-sigs (Jun 29)
- <Possible follow-ups>
- 1:11672, 3:11672 BROWSER-OTHER Mozilla Network Security Services SSLv2 stack overflow attempt Steve Thames via Snort-sigs (Jun 29)
- Re: Fucking stop emailing Russ via Snort-users (Jun 29)
- Re: Fucking stop emailing Michael Da Cova (Jun 29)
- Re: Fucking stop emailing Joel Esler (jesler) via Snort-users (Jun 29)
- Re: (censored) stop emailing paul meding via Snort-users (Jun 29)
- Re: (censored) stop emailing James Lay via Snort-users (Jun 29)
- Re: (censored) stop emailing Wm. Josiah Erikson (Jun 29)
- Re: (censored) stop emailing Alan McKay via Snort-users (Jun 29)
- Re: (censored) stop emailing Nick Ellson via Snort-users (Jun 29)
- Re: (censored) stop emailing Joel Esler (jesler) via Snort-users (Jun 29)
- Re: (censored) stop emailing Wm. Josiah Erikson (Jun 29)
- Re: (censored) stop emailing Wm. Josiah Erikson (Jun 29)
- Re: (censored) stop emailing Joel Esler (jesler) via Snort-users (Jun 29)
- Re: (censored) stop emailing Joel Esler (jesler) via Snort-users (Jun 29)
- Re: (censored) stop emailing Chris Baiocchetti via Snort-users (Jun 29)
- Re: (censored) stop emailing Lynn Schott via Snort-users (Jun 29)
- Re: Fucking stop emailing wkitty42--- via Snort-users (Jun 29)
- Re: Fucking stop emailing B via Snort-users (Jun 29)
- Re: Fucking stop emailing Timothy Czadzeck via Snort-users (Jun 30)
- Re: Fucking stop emailing Matthew Molloy via Snort-users (Jun 29)
- Re: Fucking stop emailing Carter Waxman (cwaxman) via Snort-users (Jun 29)
- Re: Fucking stop emailing Matthew Molloy via Snort-users (Jun 29)
- Re: Fucking stop emailing Kelly Alger (Jun 29)
- Re: Fucking stop emailing Michael Da Cova (Jun 29)
- Re: Fucking stop emailing Tarek Ben Soltane via Snort-users (Jun 29)
- Re: Fucking stop emailing Ken via Snort-users (Jun 29)
- Re: Fucking stop emailing Caleb Jaren via Snort-users (Jun 29)
- <Possible follow-ups>
- Re: Fucking stop emailing Nate Schmuecker via Snort-users (Jun 30)
- Fwd: Fucking stop emailing Виктор Сурин via Snort-users (Jun 30)
- Re: Fucking stop emailing Caleb Jaren via Snort-users (Jun 30)
- Re: Fucking stop emailing Joel Esler (jesler) via Snort-users (Jun 30)
- Re: Fucking stop emailing Shahbaaz Chaki via Snort-users (Jun 30)
- Re: Fucking stop emailing Paulo Angelo (Jun 30)
- Re: Fucking stop emailing R. Scott Belford via Snort-users (Jun 30)
- Re: Fucking stop emailing Lucas Smith via Snort-users (Jun 30)
- Re: Fucking stop emailing Joel Esler (jesler) via Snort-users (Jun 30)
- Re: Fucking stop emailing Jason Brvenik (Jun 30)
- Re: Fucking stop emailing Ian Caauwe (Jun 30)
- Re: Fucking stop emailing Tajul Azhar via Snort-users (Jun 30)
- Re: 0 dynamic rule loaded in snort Joel Esler (jesler) via Snort-sigs (Jun 29)
- Re: how get latest snort ruleset. Joel Esler (jesler) via Snort-sigs (Jun 29)
- Re: Unsubscribe snort mailing Kelly Alger (Jun 30)
- <Possible follow-ups>
- Re: mail list B via Snort-users (Jun 30)
- Re: mail list B M via Snort-users (Jun 30)
- Re: mail list Jaime Pérez Estrada (Jun 30)
- Re: mail list Joel Esler (jesler) via Snort-users (Jun 30)
- Re: mail list Jaime Pérez Estrada (Jun 30)