tag:blogger.com,1999:blog-10259481.comments2023-10-30T09:25:19.881-05:00Joel EslerJoel Eslerhttp://www.blogger.com/profile/05018134738510159518noreply@blogger.comBlogger1493125tag:blogger.com,1999:blog-10259481.post-61890301525560301892015-03-17T11:47:13.609-05:002015-03-17T11:47:13.609-05:00Very detailed explanation about the snort contents...Very detailed explanation about the snort contents...good read.Cyber_slothhttps://www.blogger.com/profile/14114183591703078227noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-52420420029865559662015-03-17T11:45:58.808-05:002015-03-17T11:45:58.808-05:00Very detailed explanation mate..Good read.Very detailed explanation mate..Good read.Cyber_slothhttps://www.blogger.com/profile/14114183591703078227noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-52812705742576993632014-10-22T16:03:10.560-05:002014-10-22T16:03:10.560-05:00The larger monitors seem to give you a more even t...The larger monitors seem to give you a more even tan....Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-10259481.post-35079411606129572252014-07-24T01:22:47.781-05:002014-07-24T01:22:47.781-05:00Nice Explanation.. it cleared my doubts :)Nice Explanation.. it cleared my doubts :)Anonymoushttps://www.blogger.com/profile/12142458980414550781noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-47352614308952379252014-07-16T03:29:34.499-05:002014-07-16T03:29:34.499-05:00Hi.
you can show and see about fast_paten: only......Hi.<br />you can show and see about fast_paten: only....and rule for detect acunetix scanAnonymoushttps://www.blogger.com/profile/01866331020067742695noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-84079485607245390052014-07-11T18:15:19.724-05:002014-07-11T18:15:19.724-05:00Good Job, very detailed and easy to understand!Good Job, very detailed and easy to understand!Anonymoushttps://www.blogger.com/profile/05015916188539328408noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-13944008633185497072013-11-15T15:35:19.995-05:002013-11-15T15:35:19.995-05:00The port has to be included in http_inspect for th...The port has to be included in http_inspect for that to work.Joel Eslerhttps://www.blogger.com/profile/03205477151965113876noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-30851876369678664352013-11-08T09:38:30.704-05:002013-11-08T09:38:30.704-05:00Great post. Thanks.
A quick question, could http_...Great post. Thanks. <br />A quick question, could http_method or any other http modifier (from the HTTP pre-processor) be used for non-HTTP ports?newtoyogahttps://www.blogger.com/profile/00105376760465043350noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-14859702417510426792013-11-05T09:12:58.856-05:002013-11-05T09:12:58.856-05:00oops... :-)oops... :-)Paul Turnernoreply@blogger.comtag:blogger.com,1999:blog-10259481.post-71158391332307564152013-08-30T15:26:05.084-05:002013-08-30T15:26:05.084-05:00It is clear enough that inline is best - and furth...It is clear enough that inline is best - and furthermore, a careful reading of the RFC reveals that said RFC labels it the preferred style, with bottom-posting second and top-posting actively discouraged.Daraelhttps://www.blogger.com/profile/11249660214903323431noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-73596340416738549442013-04-15T04:47:04.459-05:002013-04-15T04:47:04.459-05:00Excellent & remarkable post! I have been visit...Excellent & remarkable post! I have been visiting various blogs for my Thesis writing help. I have found your blog to be quite useful. Keep updating your blog with valuable information.Love astrologyhttp://www.vashikaranblackmagicmantras.com/noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-82424680431664621002013-03-20T08:44:03.964-05:002013-03-20T08:44:03.964-05:00It's an implied distance:0, anonymousIt's an implied distance:0, anonymousJoel Eslerhttps://www.blogger.com/profile/05018134738510159518noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-41601716234538646882013-03-14T02:52:00.112-05:002013-03-14T02:52:00.112-05:00Thanks.
That was helpful.Thanks.<br />That was helpful.Yaronhttps://www.blogger.com/profile/03886079919731047761noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-64169340115240160962013-03-12T21:34:03.077-05:002013-03-12T21:34:03.077-05:00for this case
content:"GET"; depth:3; c...for this case<br /><br />content:"GET"; depth:3; content:"downloads"; within: 50;<br /><br /><br />for the second content option does it mean distance=0 implied or offset=0 ? Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-10259481.post-42425788747060648782013-02-27T08:43:16.978-05:002013-02-27T08:43:16.978-05:00Essentially, that is correct. There are some othe...Essentially, that is correct. There are some other things like port buckets and what not in there, but yes, what you said is correct for the most part.Joel Eslerhttps://www.blogger.com/profile/05018134738510159518noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-4886299045264395972013-02-27T03:18:55.596-05:002013-02-27T03:18:55.596-05:00Hi,
So if i have a rule that combines content:&quo...Hi,<br />So if i have a rule that combines content:"..." terms and pcre expression, what snort does is the following:<br />1. Match the longest pattern (fast pattern)<br />2. If (1) matches then match all patterns<br />3. If (2) matches invoke pcre over the entire packet<br /><br />Is that correct?Yaronhttps://www.blogger.com/profile/03886079919731047761noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-86014199222194298822013-02-17T02:53:34.046-05:002013-02-17T02:53:34.046-05:00What about a tickle date?
What about a tickle date?<br />Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-10259481.post-29924455918993384322013-02-07T06:19:02.795-05:002013-02-07T06:19:02.795-05:00Thanks a lot for this stuffThanks a lot for this stuffAnonymoushttps://www.blogger.com/profile/08232297730943598446noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-83569719245773152952012-08-30T01:36:24.117-05:002012-08-30T01:36:24.117-05:00Very nice explanation...keep it upVery nice explanation...keep it upsunilhttps://www.blogger.com/profile/16379175163961717647noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-37567163238991392742012-08-25T06:20:27.389-05:002012-08-25T06:20:27.389-05:00Super Post, I have got tips to secure a mac from m...Super Post, I have got tips to secure a mac from malware and viruses,Your post so amazing,Thanks........ Router Millhttp://www.routercenter.com/noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-47145745658254049692012-07-28T12:40:54.443-05:002012-07-28T12:40:54.443-05:00Good point. Thank you.Good point. Thank you.Joel Eslerhttps://www.blogger.com/profile/05018134738510159518noreply@blogger.comtag:blogger.com,1999:blog-10259481.post-87237478049911445962012-07-28T12:37:38.119-05:002012-07-28T12:37:38.119-05:00Caller ID won't show up on your desktop unless...Caller ID won't show up on your desktop unless you list multiple email addresses.Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-10259481.post-41025610810830414242012-07-25T07:24:57.466-05:002012-07-25T07:24:57.466-05:00I think this web site has got some real extraordin...I think this web site has got some real extraordinary info for everyone.Router MillĀ http://www.routercenter.comnoreply@blogger.comtag:blogger.com,1999:blog-10259481.post-14566338684838497722011-12-19T13:49:03.483-05:002011-12-19T13:49:03.483-05:00thank's for lot's of help , thanks...thank's for lot's of help , thanks...Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-10259481.post-90929922870960164372011-12-19T06:37:12.921-05:002011-12-19T06:37:12.921-05:00screenshots not visiblescreenshots not visibleAnonymousnoreply@blogger.com