Snort mailing list archives

Re: AW: ViruSNORT


From: jeffs () speakeasy net
Date: Wed, 04 Aug 2004 14:45:35 +0000

Anybody have the URL for bleeding-edge folks?  I visited once but now cannot find the URL.
Thanks,

J

 
Seems to me that they are angry about the fact, that nobody gives feedback.

I have contact the authors to find out how to get the rule-set and hope that
they answer soon. I will post it if I get one.

Greetings,

Steffen
 


I was doing some googling on supplemental snort rules and found a project I
don't remember being mentioned on the snort-users or snort-sigs lists called
ViruSNORT, which is dedicated to detecting worms, trojans, viruses, etc.
Looks interesting, as either a separate app or perhaps just to add the rules
to a base snort install.
 
http://www.virusnort.research.kelsisiler.com/
 
However, the download page seems to down at present...  :(

Cool.  Thanks.  I would think that there might be some interest in this.
The "Bleeding-edge" rules now have an off-shoot called
bleeding-edge-malware, because of the number of malicious code releases
recently.







-------------------------------------------------------
This SF.Net email is sponsored by OSTG. Have you noticed the changes on
Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now,
one more big change to announce. We are now OSTG- Open Source Technology
Group. Come see the changes on the new OSTG site. www.ostg.com
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://www.geocrawler.com/redir-sf.php3?list=snort-users


Current thread: