Snort mailing list archives
Re: AW: ViruSNORT
From: jeffs () speakeasy net
Date: Wed, 04 Aug 2004 14:45:35 +0000
Anybody have the URL for bleeding-edge folks? I visited once but now cannot find the URL. Thanks, J
Seems to me that they are angry about the fact, that nobody gives feedback. I have contact the authors to find out how to get the rule-set and hope that they answer soon. I will post it if I get one. Greetings, Steffen I was doing some googling on supplemental snort rules and found a project I don't remember being mentioned on the snort-users or snort-sigs lists called ViruSNORT, which is dedicated to detecting worms, trojans, viruses, etc. Looks interesting, as either a separate app or perhaps just to add the rules to a base snort install. http://www.virusnort.research.kelsisiler.com/ However, the download page seems to down at present... :( Cool. Thanks. I would think that there might be some interest in this. The "Bleeding-edge" rules now have an off-shoot called bleeding-edge-malware, because of the number of malicious code releases recently.
------------------------------------------------------- This SF.Net email is sponsored by OSTG. Have you noticed the changes on Linux.com, ITManagersJournal and NewsForge in the past few weeks? Now, one more big change to announce. We are now OSTG- Open Source Technology Group. Come see the changes on the new OSTG site. www.ostg.com _______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://www.geocrawler.com/redir-sf.php3?list=snort-users
Current thread:
- AW: ViruSNORT Maetzky, Steffen (Extern) (Aug 04)
- <Possible follow-ups>
- Re: AW: ViruSNORT jeffs (Aug 04)
- Re: AW: ViruSNORT Cilin (Aug 04)
- Re: Re: AW: [Snort-users] ViruSNORT Matthew Jonkman (Aug 09)