Snort: by author
RSS Feed
About List
All Lists
Previous period
482 messages
starting Jun 06 16 and
ending Apr 08 16
Date index |
Thread index |
Author index
??????
Error after using snort2lua to ET_Open ruleset for Snort2.9.0 ?????? (Jun 06)
ِABDUL ALEANAZI
Re: Snort vs Snort++ ِABDUL ALEANAZI (May 30)
Akhil Koul
Snort NIDS configuration problems Akhil Koul (May 08)
data_log inspector Akhil Koul (Jun 14)
Snort vs Snort++ Akhil Koul (May 30)
Snort dynamic preprocessors compilation issues Akhil Koul (May 28)
Extract HTTP data from snort Akhil Koul (Jun 10)
Publishing http attributes Akhil Koul (Jun 28)
Extract HTTP data Akhil Koul (May 31)
Snort++ installation error Akhil Koul (Jun 09)
Interfacing Snort with other apps Akhil Koul (May 11)
Filter HTTP fields Akhil Koul (Jun 05)
Preprocessor example issues Akhil Koul (May 29)
Al Lewis (allewi)
Re: Need help regarding snort-3.0.0-a4 support on Fedora Core 6 Al Lewis (allewi) (Jun 14)
Re: Inline config won't pass DHCP Al Lewis (allewi) (May 08)
Re: Having a problem getting Snort rules implemented Al Lewis (allewi) (May 26)
Re: Alert on Max connections per IP Al Lewis (allewi) (Jun 06)
Re: Snort error: Cannot decode data link type 105 Al Lewis (allewi) (Apr 13)
Re: why UDP disc acquire? Al Lewis (allewi) (Jun 24)
Re: FATAL ERROR - Preproc Rule Help - rule duplicates Al Lewis (allewi) (May 25)
Re: Urgent Pointer Al Lewis (allewi) (Jun 30)
Re: why UDP disc acquire? Al Lewis (allewi) (Jun 25)
Re: Assistance Request Al Lewis (allewi) (Apr 13)
Re: Snort- RHEL compatibility Matrix Al Lewis (allewi) (Jun 11)
Re: snort react action Al Lewis (allewi) (Apr 06)
Re: Snort++ installation error Al Lewis (allewi) (Jun 09)
Re: Snort sfpreprocessor question Al Lewis (allewi) (May 31)
Re: Problem with session tagging - multiple alerts in session Al Lewis (allewi) (Apr 06)
Re: Data leak prevention Al Lewis (allewi) (Jun 06)
Re: Stream5 error Al Lewis (allewi) (Apr 07)
Re: Error Al Lewis (allewi) (Jun 28)
Re: Snort3 generating multiple alert files Al Lewis (allewi) (May 17)
Re: Activate and dynamic rules Al Lewis (allewi) (May 26)
Re: why UDP disc acquire? Al Lewis (allewi) (Jun 24)
Re: Questions regarding Snort subscription plans Al Lewis (allewi) (May 26)
Re: Snort installation on openstack Al Lewis (allewi) (May 27)
Re: Snort sfpreprocessor question Al Lewis (allewi) (May 31)
Re: FATAL ERROR - Preproc Rule Help - rule duplicates Al Lewis (allewi) (May 25)
Re: Snort sfpreprocessor question Al Lewis (allewi) (May 30)
Re: Stream5 error Al Lewis (allewi) (Apr 07)
Re: Fwd: Re: Stream5 error Al Lewis (allewi) (Apr 11)
Re: Snort installation on openstack Al Lewis (allewi) (May 27)
Re: Offset Al Lewis (allewi) (Jun 30)
Re: installation problem Al Lewis (allewi) (May 05)
Re: Setup OK but running fails. Al Lewis (allewi) (Jun 21)
Re: snort problems Al Lewis (allewi) (Jun 22)
Re: help - React keyword use to display message on web browser Al Lewis (allewi) (Apr 01)
Re: Snort configuration Al Lewis (allewi) (Jun 11)
Re: Unable to process the IP address Al Lewis (allewi) (May 20)
Re: Snort crashes Al Lewis (allewi) (Apr 25)
Re: UDP detection when no payload is pressent i UDP packets problem Al Lewis (allewi) (May 14)
Re: Problem with session tagging - multiple alerts in session Al Lewis (allewi) (Apr 11)
Re: Too much of snort events Al Lewis (allewi) (May 12)
Re: RE : snort honeytoken config Al Lewis (allewi) (May 04)
Re: Thresholds Al Lewis (allewi) (Jun 04)
Re: Stream5 error Al Lewis (allewi) (Apr 07)
Re: Snort not detecting rule and nothing being written to log or U2(Binary) Files Al Lewis (allewi) (May 20)
Re: Snort not detecting rule and nothing being written to log or U2(Binary) Files Al Lewis (allewi) (May 22)
Re: Error after using snort2lua to ET_Open ruleset for Snort2.9.0 Al Lewis (allewi) (Jun 06)
Re: Snort crashes Al Lewis (allewi) (Apr 27)
Re: Error Al Lewis (allewi) (Jun 28)
Re: Assistance Request Al Lewis (allewi) (Apr 13)
Re: Urgent Pointer Al Lewis (allewi) (Jun 30)
Re: TCP stream processing performance Al Lewis (allewi) (Jun 27)
Re: why UDP disc acquire? Al Lewis (allewi) (Jun 25)
Re: FATAL ERROR - Preproc Rule Help - rule duplicates Al Lewis (allewi) (May 25)
Amir Goldman
Marking reassembled TCP segments Amir Goldman (Jun 26)
Amir Kravitz
Problem with session tagging - multiple alerts in session Amir Kravitz (Apr 05)
Problem with session tagging - multiple alerts in session Amir Kravitz (Apr 05)
Re: Problem with session tagging - multiple alerts in session Amir Kravitz (Apr 10)
Amul Patel
Help - How to isolate specific device communication connected on wlan0 interface with same subnet. Amul Patel (May 10)
Andrei_1980
Re: How to determine that the Snort is ready to capture the traffic? Andrei_1980 (Jun 14)
How to determine that the Snort is ready to capture the traffic? Andrei_1980 (Jun 14)
Andrey Kiryukhin
Re: why UDP disc acquire? Andrey Kiryukhin (Jun 25)
Re: why UDP disc acquire? Andrey Kiryukhin (Jun 24)
why UDP disc acquire? Andrey Kiryukhin (Jun 24)
Re: How to determine that the Snort is ready to capture the traffic? Andrey Kiryukhin (Jun 15)
Re: why UDP disc acquire? Andrey Kiryukhin (Jun 25)
Anshuman Anil Deshmukh
Re: Getting error Unprocessable Entity Anshuman Anil Deshmukh (Apr 04)
Re: Getting error Unprocessable Entity Anshuman Anil Deshmukh (Apr 04)
Getting error Unprocessable Entity Anshuman Anil Deshmukh (Apr 04)
Anton Bezkrovny
Re: Snort IPS - slow file transfer problem Anton Bezkrovny (Jun 16)
Snort IPS - slow file transfer problem Anton Bezkrovny (Jun 15)
Argcyborg
Re: Alert on Max connections per IP Argcyborg (Jun 06)
Re: Alert on Max connections per IP Argcyborg (Jun 06)
Re: Alert on Max connections per IP Argcyborg (Jun 08)
Alert on Max connections per IP Argcyborg (Jun 05)
Arkam Uzair
Re: Snort not detecting rule and nothing being written to log or U2(Binary) Files Arkam Uzair (May 19)
Re: Snort not detecting rule and nothing being written to log or U2(Binary) Files Arkam Uzair (May 21)
Re: Snort not detecting rule and nothing being written to log or U2(Binary) Files Arkam Uzair (May 21)
Snort not detecting rule and nothing being written to log or U2(Binary) Files Arkam Uzair (May 19)
Art C. Chikilin
Fwd: Snort and Snorby Reports Art C. Chikilin (Apr 26)
ARUN LAL
Re: Snort is unable to start ARUN LAL (Apr 22)
Re: Snort down ARUN LAL (Jun 15)
Snort is unable to start ARUN LAL (Apr 22)
Snort down ARUN LAL (Jun 15)
Arun Saini
Re: Snort My SQL DB Arun Saini (Jun 23)
Re: Snort My SQL DB Arun Saini (Jun 23)
Snort My SQL DB Arun Saini (Jun 22)
Need help on Snort. Arun Saini (Jun 18)
Fwd: Snort My SQL DB Arun Saini (Jun 23)
Asad, Hafiz ul
Snort rules Commented Asad, Hafiz ul (May 17)
Re: Snort rules Commented Asad, Hafiz ul (May 17)
Re: Snort rules Commented Asad, Hafiz ul (May 17)
Avery Rozar
Re: u2 format differences from 2.9.8.0 to 2.9.8.2 Avery Rozar (Jun 25)
u2 format differences from 2.9.8.0 to 2.9.8.2 Avery Rozar (Jun 25)
Re: u2 format differences from 2.9.8.0 to 2.9.8.2 Avery Rozar (Jun 25)
Ayushi Chahal
installation problem Ayushi Chahal (May 05)
Babu S
Signature Database Babu S (Apr 07)
Balasubramaniam Natarajan
Re: How to determine that the Snort is ready to capture the traffic? Balasubramaniam Natarajan (Jun 14)
Re: Snort with PF_RING - Compile question Balasubramaniam Natarajan (Apr 12)
Re: Fwd: [Snort-devel] Snort 2.9.8.2 Now Available Balasubramaniam Natarajan (Apr 01)
Re: How to determine that the Snort is ready to capture the traffic? Balasubramaniam Natarajan (Jun 14)
BOCAL CALBO
snort problems BOCAL CALBO (Jun 22)
c0c0n 2016 - The CyOps Conference
c0c0n 2016 | The cy0ps c0n - Call For Papers & Call For Workshops c0c0n 2016 - The CyOps Conference (Apr 21)
Carlos Alberto Llano Rodriguez
Help Carlos Alberto Llano Rodriguez (Apr 28)
Help Carlos Alberto Llano Rodriguez (Apr 28)
Chris Chiaverini
Snort with PF_RING - Compile question Chris Chiaverini (Apr 11)
Re: Snort with PF_RING - Compile question Chris Chiaverini (Apr 12)
Chris Ditze-Stephan
Re: Did SNORT Arp Spoofing (ps) Chris Ditze-Stephan (Apr 24)
Did SNORT Arp Spoofing Chris Ditze-Stephan (Apr 23)
Chris Sandford
config file Chris Sandford (Apr 25)
Re: GUI Chris Sandford (Jun 02)
GUI Chris Sandford (Jun 01)
Re: Unable to process the IP address Chris Sandford (May 20)
Unable to process the IP address Chris Sandford (May 20)
Claus Regelmann
Re: missing alerts: Snort does not inspect payload from the machine it's running on? Claus Regelmann (Apr 08)
Re: missing alerts: Snort does not inspect payload from the machine it's running on? Claus Regelmann (Apr 11)
Re: missing alerts: Snort does not inspect payload from the machine it's running on? Claus Regelmann (Apr 08)
FILE-OTHER TRUFFLEHUNTER TALOS-CAN-0149 attack attempt Claus Regelmann (May 31)
Clint Conner
Local.Rules rule misfiring Clint Conner (Apr 26)
Re: Local.Rules rule misfiring Clint Conner (Apr 29)
Cloherty, Sean E
Re: Fwd: Re: Stream5 error Cloherty, Sean E (Apr 11)
Daniel Graf
kill the rats Daniel Graf (Apr 03)
Dan Roberts
HTTP Response GZIP Decompression Failed Dan Roberts (Jun 20)
CVE information Dan Roberts (May 30)
Snort rules Dan Roberts (Jun 14)
Dave Corsello
Fwd: Re: Stream5 error Dave Corsello (Apr 08)
Stream5 error Dave Corsello (Apr 07)
Dave Spatz
Frag3 and Stream5 Packet Reassembly for Both Windows and Linux Dave Spatz (Jun 10)
Davison, Charles Robert
Re: GUI Davison, Charles Robert (Jun 02)
Deepthi Bajaj
Need help regarding snort-3.0.0-a4 support on Fedora Core 6 Deepthi Bajaj (Jun 14)
Diego Parrilla Santamaría
Re: Snort installation on openstack Diego Parrilla Santamaría (May 27)
Re: Snort installation on openstack Diego Parrilla Santamaría (May 27)
Dim Mar
Snort Discards Packets.What does that mean? Dim Mar (Apr 24)
Ed Borgoyn (eborgoyn)
Re: Which parameters to pass in addPreproc func? Ed Borgoyn (eborgoyn) (May 19)
Re: [PATCH] DPDK DAQ Module Ed Borgoyn (eborgoyn) (Jun 16)
Ehardt, Laurie J (IS)
RHEL 6.7 dnet library not found - but is there Ehardt, Laurie J (IS) (Apr 27)
Elliot Anderson
DC related SNORT sig groups Elliot Anderson (Apr 11)
Eric Martin
Assistance Request Eric Martin (Apr 12)
Eugenio Pérez
Re: Snort with PF_RING - Compile question Eugenio Pérez (Apr 18)
fatema bannatwala
Event_filters don't work with in-rule threshold filters. fatema bannatwala (Apr 25)
Re: Event_filters don't work with in-rule threshold filters. fatema bannatwala (Apr 25)
Fincham, Greg L. CTN2
PCRE in snort Fincham, Greg L. CTN2 (Jun 30)
Offset Fincham, Greg L. CTN2 (Jun 30)
free
Re: snort react action free (Apr 06)
snort react action free (Apr 06)
Re: snort react action free (Apr 06)
Gardner, Warren (IHG)
Signature numbering significance Gardner, Warren (IHG) (May 19)
Gaurav Nagare (gnagare)
Re: Bug in spp_session.c/initSessionCache? (assigning value to cleanup_sessions) Gaurav Nagare (gnagare) (May 01)
Re: Bug responsible for memory leak Gaurav Nagare (gnagare) (Apr 22)
Re: Memory leak -- StreamPolicyInitTcp Gaurav Nagare (gnagare) (Apr 19)
Re: Fwd: Help: Snort giving alerts on pcap but not on live traffic. Gaurav Nagare (gnagare) (May 05)
Geoffrey Serrao
Re: Urgent Pointer Geoffrey Serrao (Jun 30)
Glenn Fowler
Inline config won't pass DHCP Glenn Fowler (May 08)
Re: Inline config won't pass DHCP Glenn Fowler (May 09)
Gurgen Hakobyan
Content Negation Gurgen Hakobyan (Apr 06)
Alert aggregation Gurgen Hakobyan (Apr 18)
Hafez Kamal
[HITB-Announce] HITB2016AMS Videos & GSEC Singapore Voting Hafez Kamal (Jun 20)
[HITB-Announce] HITBGSEC CFP Closes in 2 Weeks! Hafez Kamal (Apr 13)
Hamid Rezaei
Snort Version 3.0.0-a4 doesn’t work in inline mode. Hamid Rezaei (May 08)
Hanan Liaqat Bhatti
Fwd: Help: Snort giving alerts on pcap but not on live traffic. Hanan Liaqat Bhatti (May 04)
Hui Cao (huica)
Re: Regarding Snort and HTTP2 Hui Cao (huica) (Apr 14)
Re: File extract troubleshot Hui Cao (huica) (Apr 06)
Ikenna Chiadikaobi
Error Ikenna Chiadikaobi (Jun 28)
IT-Support (on-collect solutions AG)
Dropping Packets in Firefox but not in Internet Explorer IT-Support (on-collect solutions AG) (Apr 20)
James
pulledpork James (Jun 28)
James Lay
Re: Snort down James Lay (Jun 15)
Re: [Snort-sigs] Snort down James Lay (Jun 15)
FastPOS sig James Lay (Jun 03)
Re: Pullpork, so rules, and upgrades James Lay (Apr 14)
Re: Snort down James Lay (Jun 15)
Pullpork, so rules, and upgrades James Lay (Apr 14)
Re: Local.Rules rule misfiring James Lay (Apr 26)
Sleepy UA James Lay (May 17)
Re: FATAL ERROR - FATAL ERROR: Unknown rule option: 'disable'. James Lay (May 26)
Infosec Institute series James Lay (Apr 26)
Re: Snort not detecting rule and nothing being written to log or U2(Binary) Files James Lay (May 19)
James McLaughlin
Re: Nap Runtime Policy James McLaughlin (Apr 19)
Regarding Snort and HTTP2 James McLaughlin (Apr 14)
Bug in spp_session.c/initSessionCache? (assigning value to cleanup_sessions) James McLaughlin (Apr 25)
Snort's "sfhashfcn" function and parameters James McLaughlin (Apr 14)
Jan Hermes
Which parameters to pass in addPreproc func? Jan Hermes (May 19)
How to make my preprocessor being called before the stream5_global (aka spp_session)? Jan Hermes (Jun 03)
Re: Which parameters to pass in addPreproc func? Jan Hermes (May 19)
Jason
Re: Snort not detecting rule and nothing being written to log or U2(Binary) Files Jason (May 19)
Jason Williams
Re: [Emerging-Sigs] FastPOS sig Jason Williams (Jun 06)
Jeff H
Re: MALWARE-CNC TRUFFLEHUNTER SFVRT-1020 attack attempt" rule being fired Jeff H (Apr 07)
Re: MALWARE-CNC TRUFFLEHUNTER SFVRT-1020 attack attempt" rule being fired Jeff H (Apr 01)
João Soares
Snort3 generating multiple alert files João Soares (May 15)
Re: Snort rules Commented João Soares (May 17)
Re: Snort3 generating multiple alert files João Soares (May 16)
Re: Snort3 generating multiple alert files João Soares (May 16)
Re: Snort3 generating multiple alert files João Soares (May 16)
Joel Esler (jesler)
Re: [Snort-users] Question about Snort 2.9.9 and and http2 Joel Esler (jesler) (Apr 13)
Re: Subscription Rules Joel Esler (jesler) (May 16)
Re: CVE information Joel Esler (jesler) (May 31)
Re: PCRE in snort Joel Esler (jesler) (Jun 30)
Re: [Snort-users] Question about Snort 2.9.9 and and http2 Joel Esler (jesler) (Apr 13)
Re: How to determine that the Snort is ready to capture the traffic? Joel Esler (jesler) (Jun 14)
Re: Snort crashes Joel Esler (jesler) (Apr 25)
Re: Subscription Rules Joel Esler (jesler) (May 16)
Re: BROWSER-PLUGINS McAffee Virtual Technician rules Joel Esler (jesler) (Jun 23)
Re: MALWARE-CNC TRUFFLEHUNTER SFVRT-1020 attack attempt" rule being fired Joel Esler (jesler) (Apr 01)
Snort Blog: Snort Community Ruleset winner for March, 2016 Joel Esler (jesler) (Apr 06)
Re: FILE-OTHER TRUFFLEHUNTER TALOS-CAN-0149 attack attempt Joel Esler (jesler) (Jun 01)
Re: Snort rules Joel Esler (jesler) (Jun 14)
Re: Snort rules Commented Joel Esler (jesler) (May 17)
Re: Snort My SQL DB Joel Esler (jesler) (Jun 22)
Re: Snort and Snorby Reports Joel Esler (jesler) (Apr 27)
Re: Snort BASE compatibility Joel Esler (jesler) (Jun 22)
Re: Getting error Unprocessable Entity Joel Esler (jesler) (Apr 04)
Re: FATAL ERROR - FATAL ERROR: Unknown rule option: 'disable'. Joel Esler (jesler) (May 25)
Re: snort3-x509-reputation-plugin released in github Joel Esler (jesler) (Jun 06)
Re: sharing information about my public collection of 696 SNORT Sigs Joel Esler (jesler) (Apr 12)
Re: snort.conf differences in Snort 2.9.8.2 Joel Esler (jesler) (Apr 08)
Re: Razorback Joel Esler (jesler) (Jun 23)
Re: Looking for Archived Snort Community Rules Joel Esler (jesler) (Jun 14)
Re: Fwd: [Snort-devel] Snort 2.9.8.2 Now Available Joel Esler (jesler) (Apr 01)
Re: Razorback Joel Esler (jesler) (Jun 23)
Re: Alert aggregation Joel Esler (jesler) (Apr 18)
Re: Snort My SQL DB Joel Esler (jesler) (Jun 23)
John Devine
Re: snort not alerting on same ip ssh attack after restart John Devine (Apr 08)
Re: snort not alerting on same ip ssh attack after restart John Devine (Apr 08)
snort not alerting on same ip ssh attack after restart John Devine (Apr 08)
JONES BRANTUO
Re: Snort-users Digest, Vol 119, Issue 29 JONES BRANTUO (Apr 23)
Jon Larson
Memory leak -- StreamPolicyInitTcp Jon Larson (Apr 18)
Re: Memory leak -- StreamPolicyInitTcp Jon Larson (Apr 19)
Nap Runtime Policy Jon Larson (Apr 18)
Bug responsible for memory leak Jon Larson (Apr 21)
Jon P
Barnyard not using gen-msg.map Jon P (May 04)
Re: Barnyard not using gen-msg.map Jon P (May 04)
Jon Price
Threshold.conf best practices Jon Price (May 04)
Thresholds Jon Price (Jun 03)
Re: Thresholds Jon Price (Jun 10)
Jose David Mireles
Looking for Archived Snort Community Rules Jose David Mireles (Jun 14)
Joshua Kinard
Re: [Snort-users] Question about Snort 2.9.9 and and http2 Joshua Kinard (Apr 13)
Re: [Snort-users] Question about Snort 2.9.9 and and http2 Joshua Kinard (Apr 13)
Re: RELRO security in Snort-2.9.x Joshua Kinard (Apr 13)
Joshua Williams
Re: Offer a new sig for detecting JS_JITON Malware Joshua Williams (Apr 11)
Re: Offer a new sig for detecting possible wpad Name Collision Joshua Williams (May 31)
Juliusz Brzostek
snort3-x509-reputation-plugin released in github Juliusz Brzostek (Jun 06)
snort3-x509-reputation-plugin released in github Juliusz Brzostek (Jun 06)
justin hyland
Having a problem getting Snort rules implemented justin hyland (May 26)
Questions regarding Snort subscription plans justin hyland (May 26)
Kevin Wang
Re: TCP stream processing performance Kevin Wang (Jun 28)
TCP stream processing performance Kevin Wang (Jun 27)
Kotaro Takada
SSL VPN Detection Kotaro Takada (Apr 11)
Kumarswamy H N (kumhn)
Re: SSL Inspection Kumarswamy H N (kumhn) (May 02)
Kyle Cummings
Snort Capabilities Kyle Cummings (May 26)
Lawrence S. Slifkin
Snort and Snorby Reports Lawrence S. Slifkin (Apr 26)
Lenny Hansson
sharing information about my public collection of 696 SNORT Sigs Lenny Hansson (Apr 08)
UDP detection when no payload is pressent i UDP packets problem Lenny Hansson (May 13)
Leo Nespoli
Re: Snort sfpreprocessor question Leo Nespoli (Jun 03)
Snort crashes Leo Nespoli (Apr 25)
Re: Snort crashes Leo Nespoli (Apr 27)
Snort sfpreprocessor question Leo Nespoli (May 30)
Re: Snort sfpreprocessor question Leo Nespoli (May 31)
Snort error: Cannot decode data link type 105 Leo Nespoli (Apr 13)
Re: Snort error: Cannot decode data link type 105 Leo Nespoli (Apr 13)
Re: Assistance Request Leo Nespoli (Apr 13)
Re: Snort crashes Leo Nespoli (Apr 25)
lists
Re: PCRE in snort lists (Jun 30)
Liviu Costea
No timestamp Liviu Costea (May 05)
lope
how to block outgoing hacking scans? lope (May 05)
Luc Maignan
Data leak prevention Luc Maignan (Jun 06)
mali dorn
Snort does not drop packets in inline mode in FreeBSD mali dorn (Apr 24)
Matthew Mickel
Re: Offer a new sig for detecting possible Malicious RTF file Matthew Mickel (Apr 21)
Matthew White
FATAL ERROR - Preproc Rule Help - rule duplicates Matthew White (May 25)
Re: FATAL ERROR - Preproc Rule Help - rule duplicates Matthew White (May 25)
Re: FATAL ERROR - FATAL ERROR: Unknown rule option: 'disable'. Matthew White (May 25)
FATAL ERROR - FATAL ERROR: Unknown rule option: 'disable'. Matthew White (May 25)
Re: FATAL ERROR - FATAL ERROR: Unknown rule option: 'disable'. Matthew White (May 26)
Re: FATAL ERROR - Preproc Rule Help - rule duplicates Matthew White (May 25)
Re: FATAL ERROR - Preproc Rule Help - rule duplicates Matthew White (May 25)
Re: FATAL ERROR - Preproc Rule Help - rule duplicates Matthew White (May 25)
Re: FATAL ERROR - Preproc Rule Help - rule duplicates Matthew White (May 25)
Matthias Wübbeling
Preprocessor's process function not called due to wrong pp_enabled masks Matthias Wübbeling (Jun 28)
Maxim Uvarov
Re: [PATCH] DPDK DAQ Module Maxim Uvarov (Jun 16)
Re: [PATCH] DPDK DAQ Module Maxim Uvarov (Jun 16)
Michael Altizer
Re: [PATCH] DPDK DAQ Module Michael Altizer (Jun 17)
Michael Steele
Re: barnyard failing to start upon pulled pork update Michael Steele (May 17)
Re: GUI Michael Steele (Jun 01)
Nicolas Lepolard
Snort, VM or physical server ? Nicolas Lepolard (Jun 16)
Nicolas Matovelle Trigo
Activate and dynamic rules Nicolas Matovelle Trigo (May 26)
Nilesh Varmora
snort 2.9.8.3 does optimzation off in configure.in, its giving errorr while compiling Nilesh Varmora (Jun 23)
Noah Dietrich
Re: RHEL 6.7 dnet library not found - but is there Noah Dietrich (Apr 28)
Re: Snort3 generating multiple alert files Noah Dietrich (May 18)
NWeights NWeights
About Snort rules between registered and subscribed version NWeights NWeights (May 24)
Oleg Makarov
Too much of snort events Oleg Makarov (May 12)
Re: Too much of snort events Oleg Makarov (May 13)
Omar Osta
Re: Subscription Rules Omar Osta (May 16)
Re: Subscription Rules Omar Osta (May 17)
Subscription Rules Omar Osta (May 16)
BROWSER-PLUGINS McAffee Virtual Technician rules Omar Osta (Jun 23)
Pierre
SnortEventqAddBypass ? Pierre (Jun 24)
Pittigher, Raymond
Re: Urgent Pointer Pittigher, Raymond (Jun 30)
Re: Urgent Pointer Pittigher, Raymond (Jun 30)
Re: Urgent Pointer Pittigher, Raymond (Jun 30)
Urgent Pointer Pittigher, Raymond (Jun 30)
Pratibha Rajan
Snort- RHEL compatibility Matrix Pratibha Rajan (Jun 10)
Centralized reporting server and Sensors - Possible mis-match Pratibha Rajan (Jun 29)
Snort BASE compatibility Pratibha Rajan (Jun 22)
Centralized reporting server and Sensors - Possible mis-match Pratibha Rajan (Jun 29)
Rahul Bhonsale
Pulledpork modifyingsid error Rahul Bhonsale (Jun 29)
Research
Snort Subscriber Rules Update 2016-04-07 Research (Apr 07)
Snort Subscriber Rules Update 2016-06-28 Research (Jun 28)
Snort Subscriber Rules Update 2016-06-23 Research (Jun 23)
Snort Subscriber Rules Update 2016-04-28 Research (Apr 28)
Snort Subscriber Rules Update 2016-06-02 Research (Jun 02)
Snort Subscriber Rules Update 2016-06-21 Research (Jun 21)
Snort Subscriber Rules Update 2016-06-09 Research (Jun 09)
Snort Subscriber Rules Update 2016-05-10 Research (May 10)
Snort Subscriber Rules Update 2016-06-07 Research (Jun 07)
Snort Subscriber Rules Update 2016-04-05 Research (Apr 05)
Snort Subscriber Rules Update 2016-04-08 Research (Apr 08)
Snort Subscriber Rules Update 2016-04-07 Research (Apr 07)
Snort Subscriber Rules Update 2016-04-12 Research (Apr 12)
Snort Subscriber Rules Update 2016-05-05 Research (May 05)
Snort Subscriber Rules Update 2016-05-17 Research (May 17)
Snort Subscriber Rules Update 2016-06-30 Research (Jun 30)
Snort Subscriber Rules Update 2016-05-31 Research (May 31)
Snort Subscriber Rules Update 2016-04-26 Research (Apr 26)
Snort Subscriber Rules Update 2016-06-30 Research (Jun 30)
Snort Subscriber Rules Update 2016-05-19 Research (May 19)
Snort Subscriber Rules Update 2016-05-24 Research (May 24)
Snort Subscriber Rules Update 2016-04-21 Research (Apr 21)
Snort Subscriber Rules Update 2016-04-14 Research (Apr 14)
Snort Subscriber Rules Update 2016-05-11 Research (May 11)
Snort Subscriber Rules Update 2016-06-14 Research (Jun 14)
Snort Subscriber Rules Update 2016-05-02 Research (May 02)
Snort Subscriber Rules Update 2016-06-16 Research (Jun 16)
Snort Subscriber Rules Update 2016-04-19 Research (Apr 19)
Snort Subscriber Rules Update 2016-05-26 Research (May 26)
Snort Subscriber Rules Update 2016-04-21 Research (Apr 21)
Rhoades.Jon
Re: Snort, VM or physical server ? Rhoades.Jon (Jun 16)
Rich Lee
Re: Razorback Rich Lee (Jun 23)
Razorback Rich Lee (Jun 23)
Re: Razorback Rich Lee (Jun 23)
rmkml
Offer a new sig for detecting possible Typo Squatting on .om TLD rmkml (Apr 03)
Re: Snort SID Help 1:3813 rmkml (May 01)
Offer a new sig for detecting Netgear Authentication bypass rmkml (Jun 20)
RE : RE: RE : snort honeytoken config rmkml (May 04)
Re: Snort Discards Packets.What does that mean? rmkml (Apr 24)
RE : snort honeytoken config rmkml (May 03)
Offer a new sig for detecting JS_JITON Malware rmkml (Apr 11)
Offer a new sig for detecting possible Malicious RTF file rmkml (Apr 13)
Offer a new sig for detecting possible wpad Name Collision rmkml (May 30)
Robert
Setup OK but running fails. Robert (Jun 21)
Rodgers, Anthony (DTMB)
Re: Local.Rules rule misfiring Rodgers, Anthony (DTMB) (Apr 29)
rohan dora
snort dns Preprocessor rohan dora (May 05)
Re: snort dns Preprocessor rohan dora (May 07)
Re: snort dns Preprocessor rohan dora (May 06)
Re: snort dns Preprocessor rohan dora (May 10)
Pointers required for the Snort Preprocessor Code portscan.c rohan dora (Apr 04)
Ronald Hill
Re: Snort3 generating multiple alert files Ronald Hill (May 17)
Russ
Re: Snort vs Snort++ Russ (Jun 01)
Re: Snort3 generating multiple alert files Russ (May 16)
Re: Alert on Max connections per IP Russ (Jun 06)
Re: Publishing http attributes Russ (Jun 28)
Re: snort++ (ver. 3) roadmap/release date Russ (Apr 18)
Re: data_log inspector Russ (Jun 14)
Re: Snort3 generating multiple alert files Russ (May 16)
Re: Fwd: data_log output Russ (Jun 19)
Re: Snort is unable to start Russ (Apr 22)
Re: Snort3 generating multiple alert files Russ (May 16)
Re: Snort3 generating multiple alert files Russ (May 17)
Re: Alert aggregation Russ (Apr 18)
Re: Interfacing Snort with other apps Russ (May 16)
Ryan Martin
Re: Snort, VM or physical server ? Ryan Martin (Jun 16)
Samuel Kidman
Re: RE : snort honeytoken config Samuel Kidman (May 04)
snort honeytoken config Samuel Kidman (May 03)
snort honeytoken config Samuel Kidman (May 12)
FW: RE : RE: RE : snort honeytoken config Samuel Kidman (May 12)
Scott Ellis
Testing community rules Scott Ellis (May 23)
Seshaiah Erugu (serugu)
Re: snort dns Preprocessor Seshaiah Erugu (serugu) (May 05)
Re: Publishing http attributes Seshaiah Erugu (serugu) (Jun 28)
Re: snort dns Preprocessor Seshaiah Erugu (serugu) (May 07)
Re: snort dns Preprocessor Seshaiah Erugu (serugu) (May 09)
Shawn
Re: RELRO security in Snort-2.9.x Shawn (Apr 12)
Shefali Prabhu (shefapra)
Re: Does snort 2.9.8 support HTTP2? Shefali Prabhu (shefapra) (Apr 12)
Shirkdog
Re: pulledpork Shirkdog (Jun 28)
Re: Pullpork, so rules, and upgrades Shirkdog (Apr 14)
Re: FATAL ERROR - FATAL ERROR: Unknown rule option: 'disable'. Shirkdog (May 26)
Re: Pulledpork modifyingsid error Shirkdog (Jun 29)
Shoufu Luo
rule over tcp stream Shoufu Luo (Jun 16)
Shy It
SSL Inspection Shy It (May 02)
SiNA
snort++ (ver. 3) roadmap/release date SiNA (Apr 15)
Snort Releases
Snort++ Build 197 Available Now Snort Releases (May 03)
Snort 2.9.8.3 Now Available Snort Releases (Jun 22)
Snort++ Build 201 Available Now Snort Releases (Jun 23)
Snort 2.9.8.3 Now Available Snort Releases (Jun 22)
Snort++ Build 201 Available Now Snort Releases (Jun 23)
Snort++ Build 197 Available Now Snort Releases (May 03)
Stanwyck, Carraig - ASOC - Kansas City, MO
Installcore Downloads and Aggresive Adware Popups (catches numerous variants) Stanwyck, Carraig - ASOC - Kansas City, MO (May 19)
Rule Submissions Stanwyck, Carraig - ASOC - Kansas City, MO (May 18)
InstallFast Malware/Adware Variants Stanwyck, Carraig - ASOC - Kansas City, MO (Jun 13)
Stephen Gantz
Re: Having a problem getting Snort rules implemented Stephen Gantz (May 26)
Sunil Koul
data_log output Sunil Koul (Jun 19)
Fwd: data_log output Sunil Koul (Jun 19)
Tiwei Bie
Re: [PATCH] DPDK DAQ Module Tiwei Bie (Jun 16)
[PATCH] DPDK DAQ Module Tiwei Bie (Jun 15)
Re: [PATCH] DPDK DAQ Module Tiwei Bie (Jun 16)
Re: [PATCH] DPDK DAQ Module Tiwei Bie (Jun 16)
Toby Riddell
Include details of payload in log message? Toby Riddell (Jun 12)
Re: Include details of payload in log message? Toby Riddell (Jun 12)
Tony Zhang
Question about Snort 2.9.9 and and http2 Tony Zhang (Apr 12)
Does snort 2.9.8 support HTTP2? Tony Zhang (Apr 12)
valentin . giraud
File extract troubleshot valentin . giraud (Apr 06)
Open App Id valentin . giraud (Apr 04)
Fwd: Open App Id valentin . giraud (Apr 04)
Velusami, Selvi
Re: Snort installation on openstack Velusami, Selvi (May 31)
Re: Snort installation on openstack Velusami, Selvi (May 27)
Snort installation on openstack Velusami, Selvi (May 27)
Snort configuration Velusami, Selvi (Jun 10)
Re: Snort installation on openstack Velusami, Selvi (May 27)
Re: Snort installation on openstack Velusami, Selvi (May 27)
Re: Snort installation on openstack Velusami, Selvi (May 27)
Re: Snort installation on openstack Velusami, Selvi (May 27)
Snort installation on openstack Velusami, Selvi (May 27)
Re: Snort installation on openstack Velusami, Selvi (May 27)
Vicky Singh
need help in understanding a piece of code in snort 2.9.7.3 Vicky Singh (May 27)
Victor Roemer
Re: TCP stream processing performance Victor Roemer (Jun 27)
Viiret, Justin
Hyperscan pattern matcher integration for Snort 2.9.8.2 Viiret, Justin (Jun 08)
Re: Hyperscan pattern matcher integration for Snort 2.9.8.2 Viiret, Justin (Jun 13)
Vladimir Kunschikov
Re: Hyperscan pattern matcher integration for Snort 2.9.8.2 Vladimir Kunschikov (Jun 10)
WGM IT
Barnyard2 hangs when started with MySQL WGM IT (May 11)
Barnyard2 hangs when started with MySQL WGM IT (May 11)
barnyard failing to start upon pulled pork update WGM IT (May 17)
wgm-it
barnyard failing to start upon pulled pork update wgm-it (Apr 08)
Will Metcalf
Re: [Emerging-Sigs] InstallFast Malware/Adware Variants Will Metcalf (Jun 13)
Wilson Mesa
Snort SID Help 1:3813 Wilson Mesa (May 01)
wkitty42
Re: why UDP disc acquire? wkitty42 (Jun 25)
Re: kill the rats wkitty42 (Apr 03)
Re: snort not alerting on same ip ssh attack after restart wkitty42 (Apr 08)
Re: Event_filters don't work with in-rule threshold filters. wkitty42 (Apr 25)
Re: Event_filters don't work with in-rule threshold filters. wkitty42 (Apr 25)
Re: Alert on Max connections per IP wkitty42 (Jun 08)
Re: Snort NIDS configuration problems wkitty42 (May 08)
Re: config file wkitty42 (Apr 25)
Re: How to determine that the Snort is ready to capture the traffic? wkitty42 (Jun 14)
Re: [Snort-sigs] Snort down wkitty42 (Jun 15)
Re: snort not alerting on same ip ssh attack after restart wkitty42 (Apr 08)
Re: CVE information wkitty42 (May 31)
Re: Include details of payload in log message? wkitty42 (Jun 12)
Re: Snort, VM or physical server ? wkitty42 (Jun 16)
Re: Alert on Max connections per IP wkitty42 (Jun 05)
Re: Snort installation on openstack wkitty42 (May 27)
Re: Snort Capabilities wkitty42 (May 26)
Re: barnyard failing to start upon pulled pork update wkitty42 (Apr 08)
Re: Alert on Max connections per IP wkitty42 (Jun 07)
Re: Data leak prevention wkitty42 (Jun 06)
Re: Snort My SQL DB wkitty42 (Jun 24)
Re: Snort installation on openstack wkitty42 (May 27)
Re: Signature Database wkitty42 (Apr 08)
Re: Snort IPS - slow file transfer problem wkitty42 (Jun 15)
Re: Activate and dynamic rules wkitty42 (May 26)
Y M
Re: Getting error Unprocessable Entity Y M (Apr 04)
Re: Getting error Unprocessable Entity Y M (Apr 04)
Re: Urgent Pointer Y M (Jun 30)
Re: Barnyard not using gen-msg.map Y M (May 04)
Re: snort.conf differences in Snort 2.9.8.2 Y M (Apr 08)
Re: Looking for Archived Snort Community Rules Y M (Jun 14)
Re: Getting error Unprocessable Entity Y M (Apr 04)
Re: missing alerts: Snort does not inspect payload from the machine it's running on? Y M (Apr 12)
snort.conf differences in Snort 2.9.8.2 Y M (Apr 08)
Re: Signature numbering significance Y M (May 19)
Re: Snort rules Y M (Jun 14)
Re: u2 format differences from 2.9.8.0 to 2.9.8.2 Y M (Jun 25)
Re: Event_filters don't work with in-rule threshold filters. Y M (Apr 25)
Re: Snort rules Y M (Jun 14)
Re: missing alerts: Snort does not inspect payload from the machine it's running on? Y M (Apr 08)