Snort mailing list archives

Previous By Date Next
Previous By Thread Next

FW: Inquiry about snort‏

From: Mejally Khdour <mejally.khdour () hotmail com>
Date: Wed, 9 Apr 2014 17:40:29 +0000
Hi
my graduation project is Testing and Evaluation of IPv6 Impact on Intrusion Detection Systems, therefore I used snort 
as an intrusion detection system, I faced a problem in understanding the architecture of snort, and how its files are 
connected,  I tried to change the alerts syntax which come out on command prompt when attacks were detected, but 
unfortunately I failed.
ex: instead of (snort decoder) warning : ICMP type not decoded                       ->(snort decoder) warning : Flood 
Advertise6 attck                   
may you tell me how to change the syntax of the alert (warning) if possible or send me some references which will help, 
please?                                                                                                                 
          
------------------------------------------------------------------------------
Put Bad Developers to Shame
Dominate Development with Jenkins Continuous Integration
Continuously Automate Build, Test & Deployment 
Start a new project now. Try Jenkins in the cloud.
http://p.sf.net/sfu/13600_Cloudbees
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
Previous By Date Next
Previous By Thread Next

Current thread: