Snort mailing list archives
Inquiry about configuration file
From: Mohamed Sayed <mohamed.sayed () invictux com>
Date: Sun, 17 Mar 2024 19:11:26 +0000
Hi snort Team, I hope you are doing well. Kindly, could any one help me where I can put these two lines in the configuration file step-by-step and if I downloaded the subscription rules how I can add these two lines to show CVE number when running Snort 3 Over a PCAP. These are the Lines: search_engine.detect_raw_tcp = true alerts.log_references = true Best Regards, Mohamed Sayed OT/ICS Cybersecurity Engineer OT/ICS Services | Invictux Your Security Is Our Responsibility [mobilePhone] +2 01119588936 [emailAddress] Mohamed.Sayed () Invictux com<mailto:Mohamed.Sayed () Invictux com> [website] www.Invictux.com<https://www.invictux.com/> [address] Ashgar Darna Compound, Ring Rd, El-Basatin, Cairo .
_______________________________________________ Snort-sigs mailing list Snort-sigs () lists snort org https://lists.snort.org/mailman/listinfo/snort-sigs Please visit http://blog.snort.org for the latest news about Snort! Please follow these rules: https://snort.org/faq/what-is-the-mailing-list-etiquette Visit the Snort.org to subscribe to the official Snort ruleset, make sure to stay up to date to catch the most <a href=" https://snort.org/downloads/#rule-downloads">emerging threats</a>!
Current thread:
- Inquiry about configuration file Mohamed Sayed (Mar 18)