Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Inquiry about configuration file

From: Mohamed Sayed <mohamed.sayed () invictux com>
Date: Sun, 17 Mar 2024 19:11:26 +0000
Hi snort Team,

I hope you are doing well.
Kindly, could any one help me where I can put these two lines in the configuration file step-by-step and if I 
downloaded the subscription rules how I can add these two lines to show CVE number when running Snort 3 Over a PCAP.
These are the Lines:
search_engine.detect_raw_tcp = true
alerts.log_references = true

Best Regards,




Mohamed Sayed

OT/ICS Cybersecurity Engineer

OT/ICS Services | Invictux



Your Security Is Our Responsibility

[mobilePhone]

+2 01119588936

[emailAddress]

Mohamed.Sayed () Invictux com<mailto:Mohamed.Sayed () Invictux com>

[website]

www.Invictux.com<https://www.invictux.com/>

[address]

Ashgar Darna Compound, Ring Rd, El-Basatin, Cairo .





_______________________________________________
Snort-sigs mailing list
Snort-sigs () lists snort org
https://lists.snort.org/mailman/listinfo/snort-sigs

Please visit http://blog.snort.org for the latest news about Snort!

Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette

Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a 
href=" https://snort.org/downloads/#rule-downloads";>emerging threats</a>!
Previous By Date Next
Previous By Thread Next

Current thread: