Snort mailing list archives
Fw: Snort Rules
From: alex dina <alexander_dina () yahoo com>
Date: Thu, 14 Feb 2013 14:28:30 -0800 (PST)
Alex Dina Network Security Engineer, CISSP, CISM 301-404-5312 ----- Forwarded Message ----- From: alex dina <alexander_dina () yahoo com> To: "Snort-sigs () lists sourceforge net" <Snort-sigs () lists sourceforge net> Sent: Thursday, February 14, 2013 2:07 PM Subject: Snort Rules Also, can you please explain what these rule are looking for in a data packet? Thank you! alert tcp any any -> any any (msg:"Taidoor trojan - notify Threat Cell"; content:"GET /"; content:".asp?est="; content:"&hn="; content:"&ha="; sid:4200455; rev:1;)
------------------------------------------------------------------------------ Free Next-Gen Firewall Hardware Offer Buy your Sophos next-gen firewall before the end March 2013 and get the hardware for free! Learn more. http://p.sf.net/sfu/sophos-d2d-feb
_______________________________________________ Snort-sigs mailing list Snort-sigs () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-sigs http://www.snort.org Please visit http://blog.snort.org for the latest news about Snort!
Current thread:
- Fw: Snort Rules alex dina (Feb 14)
- Re: Fw: Snort Rules waldo kitty (Feb 14)
- Re: Fw: Snort Rules alex dina (Feb 15)
- Re: Fw: Snort Rules Alex McDonnell (Feb 15)
- Re: Fw: Snort Rules Ned Moran (Feb 15)
- Re: Fw: Snort Rules waldo kitty (Feb 15)
- Re: Fw: Snort Rules alex dina (Feb 15)
- <Possible follow-ups>
- Snort Rules Josh Bitto (Mar 24)
- Re: Snort Rules Joel Esler (Mar 24)
- Re: Snort Rules Mayur Patil (Mar 24)
- Re: Snort Rules Kurt Jensen CISSP (Mar 26)
- Re: Snort Rules Joel Esler (Mar 24)
- Re: Fw: Snort Rules waldo kitty (Feb 14)