Snort mailing list archives
Fw: re: darpa dataset problem(zero alert)
From: mehdi maleki <mehdimlk2003 () yahoo com>
Date: Wed, 6 Aug 2014 22:56:42 -0700
I've tested snort with adding general rule such (alert icmp any any -> any any (msg: "test";sid=) ) and it working well in generating alert but with default rule set it generate no alert for darpa dataset pcap files! it seems default rule set doesn't generate even one alert for old darpa dataset. i don't know why? I’ve read faq but there is any solution for my problem. I’ve used registered user rule set.
------------------------------------------------------------------------------ Infragistics Professional Build stunning WinForms apps today! Reboot your WinForms applications with our WinForms controls. Build a bridge from your legacy apps to the future. http://pubads.g.doubleclick.net/gampad/clk?id=153845071&iu=/4140/ostg.clktrk
_______________________________________________ Snort-users mailing list Snort-users () lists sourceforge net Go to this URL to change user options or unsubscribe: https://lists.sourceforge.net/lists/listinfo/snort-users Snort-users list archive: http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users Please visit http://blog.snort.org to stay current on all the latest Snort news!
Current thread:
- darpa dataset problem(zero alert) mehdi maleki (Aug 05)
- Re: darpa dataset problem(zero alert) waldo kitty (Aug 05)
- <Possible follow-ups>
- darpa dataset problem(zero alert) mehdi maleki (Aug 06)
- Message not available
- Message not available
- Fw: re: darpa dataset problem(zero alert) mehdi maleki (Aug 06)
- Message not available
- Re: darpa dataset problem(zero alert) Joel Esler (jesler) (Aug 07)
- Re: darpa dataset problem(zero alert) Joel Esler (jesler) (Aug 12)
- Re: darpa dataset problem(zero alert) mehdi maleki (Aug 25)
- Fw: darpa dataset problem(zero alert) mehdi maleki (Aug 25)
- Re: darpa dataset problem(zero alert) Joel Esler (jesler) (Aug 19)
- Re: darpa dataset problem(zero alert) waldo kitty (Aug 19)
- Fw: darpa dataset problem(zero alert) mehdi maleki (Aug 25)
- Re: darpa dataset problem(zero alert) Joel Esler (jesler) (Aug 25)
- Re: darpa dataset problem(zero alert) waldo kitty (Aug 25)