Snort mailing list archives
Snort sigs for BlackEnergy v3 / lite
From: David Bryant <dlkzbryant () gmail com>
Date: Fri, 10 Oct 2014 09:23:31 -0400
Are there any signatures to detect the newer variants of BlackEnergy (i.e. v3 / lite) or any being written other than from Emerging Threats? I did not see any from Sourcefire VRT, but thought I'd ask in case I missed them or they are under a different name. http://f-secure.com/documents/996508/1030745/blackenergy_whitepaper.pdf Thanks, David ------------------------------------------------------------------------------ Meet PCI DSS 3.0 Compliance Requirements with EventLog Analyzer Achieve PCI DSS 3.0 Compliant Status with Out-of-the-box PCI DSS Reports Are you Audit-Ready for PCI DSS 3.0 Compliance? Download White paper Comply to PCI DSS 3.0 Requirement 10 and 11.5 with EventLog Analyzer http://pubads.g.doubleclick.net/gampad/clk?id=154622311&iu=/4140/ostg.clktrk _______________________________________________ Snort-sigs mailing list Snort-sigs () lists sourceforge net https://lists.sourceforge.net/lists/listinfo/snort-sigs http://www.snort.org Please visit http://blog.snort.org for the latest news about Snort!
Current thread:
- Snort sigs for BlackEnergy v3 / lite David Bryant (Oct 10)
- Re: Snort sigs for BlackEnergy v3 / lite waldo kitty (Oct 10)
- Re: Snort sigs for BlackEnergy v3 / lite Joel Esler (jesler) (Oct 10)
- Re: Snort sigs for BlackEnergy v3 / lite waldo kitty (Oct 10)