Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: snort rules to track Potential Criticality windows event

From: Arun Saini <mailarunsaini () gmail com>
Date: Wed, 12 Oct 2016 06:35:51 +0530
Can anyone help or guide here on below?
How to get these events in snort??

Arun Saini
about.me/arun.saini
Mobile: +91-9890738762
in.linkedin.com/in/mailarunsaini



On 31 Aug 2016 12:22 pm, "Arun Saini" <mailarunsaini () gmail com> wrote:


Hi Team,

do we have any snort rules to track alerts on Potential Criticality
windows event ?? like given below ,

https://technet.microsoft.com/windows-server-docs/identity/
ad-ds/plan/appendix-l--events-to-monitor


​Also to track events or compromise like attached white paper ?​

​http://www.thinkmind.org/index.php?view=article&;
articleid=icimp_2016_2_20_30032 ​



[image: --]
Arun Saini
[image: http://]about.me/arun.saini
<http://about.me/arun.saini>

*Mobile: +91-9890738762*

*in.linkedin.com/in/mailarunsaini
<http://in.linkedin.com/in/mailarunsaini>*


------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most 
engaging tech sites, SlashDot.org! http://sdm.link/slashdot
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
Previous By Date Next
Previous By Thread Next

Current thread: