Snort mailing list archives
Re: are snort rules snapchot 2.9.9.0 and ET enough for full detection or i will add others source of rules
From: wkitty42--- via Snort-sigs <snort-sigs () lists snort org>
Date: Fri, 13 Jul 2018 12:07:24 -0400
On 07/11/2018 06:21 AM, ossama bouziani via Snort-sigs wrote:
My question :shall i add others rules to snort rules snapchot 2.9.9.0 and ET?
you can easily add your own rules files... a lot of systems use local.rules for their locally maintained rules... that could be expanded on with something like
local-web.rules local-ransomware.rulesand more if they are needed... just make sure they are included in your management tool so they are actually included in what snort uses...
--
NOTE: No off-list assistance is given without prior approval.
*Please keep mailing list traffic on the list unless*
*a signed and pre-paid contract is in effect with us.*
_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists snort org
https://lists.snort.org/mailman/listinfo/snort-sigs
Please visit http://blog.snort.org for the latest news about Snort!
Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette
Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a href="
https://snort.org/downloads/#rule-downloads";>emerging threats</a>!
Current thread:
- are snort rules snapchot 2.9.9.0 and ET enough for full detection or i will add others source of rules ossama bouziani via Snort-sigs (Jul 13)
- Re: are snort rules snapchot 2.9.9.0 and ET enough for full detection or i will add others source of rules wkitty42--- via Snort-sigs (Jul 13)