If you read my blog, chances are, it's because you have something to do with, or have heard of, Snort. Check out the below link, because VRT shows you how the pattern matcher works, and how to make it bend it's will for awesome.
VRT: Using Snort fast patterns wisely for fast rules.
Joel Esler, Sourcefire, Snort, Immunet, ClamAV, Apple, and Network Security. This is my blog.
Subscribe to:
Post Comments (Atom)
Call of Duty Error 6034 for the Xbox
Several friends and I play Call of Duty nearly every night. However, Activision’s most recent multiplayer update broke the heck out of Call...
-
Without going off the deep-end here and discussing every single Snort rule keyword, I just wanted to touch on a few modifiers that people so...
-
Let me start off by saying I'm not bashing the writer of this article, and I'm trying not to be super critical. I don't want to...
-
For those of you that haven't heard of DropBox, it's essentially a synced drive that is stored on DropBox's servers (in the clou...
1 comment:
[...] This post was mentioned on Twitter by JoelEsler. JoelEsler said: VRT: Using Snort fast patterns wisely for fast rules http://goo.gl/fb/PKc5l [...]
Post a Comment