Home page logo
/

825 messages starting Oct 01 13 and ending Dec 31 13
Date index | Thread index | Author index

Tuesday, 01 October

@processing packets left by snort anagha b
SIP scanner sig Y M
Re: SIP scanner sig Alex McDonnell
Re: SIP scanner sig Y M
Re: SIP scanner sig Alex McDonnell
Re: SIP scanner sig Y M
Sourcefire VRT Certified Snort Rules Update 2013-10-01 Research
IE 0-day James Lay
Re: IE 0-day Joel Esler
Re: IE 0-day James Lay
Snort.org down? Jeremy Hoel
Re: Snort.org down? Jeremy Hoel

Wednesday, 02 October

Re: SnortID.com website Randal T. Rioux
Re: SnortID.com website Joel Esler
Classification Number Mapping LaTonya Hall
Fwd: Classification Number Mapping LaTonya Hall
Re: Classification Number Mapping James Lay
Re: SnortID.com website Randal T. Rioux
Re: SnortID.com website Joel Esler
problem with snort configure script and libpcap Youngquist, Jason R.

Thursday, 03 October

Re: problem with snort configure script and libpcap James Lay
Need help: Snort not logging properly Ashu Singh
Re: Need help: Snort not logging properly James Lay
Sourcefire VRT Certified Snort Rules Update 2013-10-03 Research

Friday, 04 October

Re: Barnyard2 showing no records Randal T. Rioux
Re: Unrecognised syslog facility/priority in snort Mayur Patil
Re: Unrecognised syslog facility/priority in snort Mayur Patil

Saturday, 05 October

Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) Mathewson, Nathan
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) James Lay
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) nicenate
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) James Lay
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) nicenate
Re: Unrecognised syslog facility/priority in snort praveen_recker .
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) wkitty42
[HOW-TO] Logging Snort alerts to Syslog and Splunk praveen_recker .
Snort - w3af integration to find malware in websites Andres Riancho

Sunday, 06 October

Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) nicenate
Re: [HOW-TO] Logging Snort alerts to Syslog and Splunk Mayur Patil
Snort Not logging alert Ashu Singh
Re: [HOW-TO] Logging Snort alerts to Syslog and Splunk Chris Green

Monday, 07 October

Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) Joel Esler
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) Jeff Kell
Fwd: Unrecognised syslog facility/priority in snort Mayur Patil
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) Joel Esler
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) nicenate
Dynamic rules not initialized properly Hanson.Webster
Re: Dynamic rules not initialized properly Y M
Re: Request assistance regarding VRT sig 1:27962 (MALWARE-CNC Win.Trojan.Storm botnet connection reset) Joel Esler
Re: Dynamic rules not initialized properly Y M
Question about snort rules Fernando Villegas
Re: Question about snort rules Joel Esler

Tuesday, 08 October

Beginner Rule Problem Kodiak80
Re: Question about snort rules Joel Esler
Re: Unrecognised syslog facility/priority in snort Mayur Patil
Re: Beginner Rule Problem Joel Esler
Re: Beginner Rule Problem Joel Esler
how to specify collecting packets on more then one interface snorty
Sourcefire VRT Certified Snort Rules Update 2013-10-08 Research

Wednesday, 09 October

Re: Unrecognised syslog facility/priority in snort Mayur Patil
nmap -sT prevention Meysam Farazmand
2955 sigs for registered users Turnbough, Bradley E.
Re: how to specify collecting packets on more then one interface Russ Combs
Re: 2955 sigs for registered users Joel Esler
vBulletin 4.x and 5.x exploit in the wild James Lay

Thursday, 10 October

Re: vBulletin 4.x and 5.x exploit in the wild Joel Esler
Re: Unrecognised syslog facility/priority in snort wkitty42
Re: 2955 sigs for registered users wkitty42
Re: 2955 sigs for registered users Joel Esler
Re: Unrecognised syslog facility/priority in snort Mayur Patil
Re: Zbot variant sigs Y M
pulledpork not retrieving reg rules Roland RoLaNd
Re: pulledpork not retrieving reg rules Heine Lysemose
ERROR: Can't set DAQ BPF filter to 'status' (pcap_daq_set_filter: pcap_compile: syntax error)! Fatal Error, Quitting.. k vijay sai Prashanth
Re: ERROR: Can't set DAQ BPF filter to 'status' (pcap_daq_set_filter: pcap_compile: syntax error)! Fatal Error, Quitting.. Peter Bates
Re: ERROR: Can't set DAQ BPF filter to 'status' (pcap_daq_set_filter: pcap_compile: syntax error)! Fatal Error, Quitting.. k vijay sai Prashanth
Re: ERROR: Can't set DAQ BPF filter to 'status' (pcap_daq_set_filter: pcap_compile: syntax error)! Fatal Error, Quitting.. k vijay sai Prashanth
Re: ERROR: Can't set DAQ BPF filter to 'status' (pcap_daq_set_filter: pcap_compile: syntax error)! Fatal Error, Quitting.. k vijay sai Prashanth
Re: ERROR: Can't set DAQ BPF filter to 'status' (pcap_daq_set_filter: pcap_compile: syntax error)! Fatal Error, Quitting.. Peter Bates
Re: ERROR: Can't set DAQ BPF filter to 'status' (pcap_daq_set_filter: pcap_compile: syntax error)! Fatal Error, Quitting.. Peter Bates
Re: pulledpork not retrieving reg rules Roland RoLaNd
Zabbix for Snort performance monitoring Anshuman Anil Deshmukh
Re: Zabbix for Snort performance monitoring Anshuman Anil Deshmukh
Re: Zabbix for Snort performance monitoring Eric G
Zbot/Simda sig Y M
Sourcefire VRT Certified Snort Rules Update 2013-10-10 Research
Re: Beginner Rule Problem Kodiak80
Re: Zbot/Simda sig Y M
Re: Zbot variant sigs Y M

Friday, 11 October

Re: 2955 sigs for registered users wkitty42
Re: pulledpork not retrieving reg rules wkitty42
ANY query rule Luis Daniel Lucio Quiroz
Re: Beginner Rule Problem wkitty42
Re: ANY query rule wkitty42
Re: ANY query rule Luis Daniel Lucio Quiroz
Re: ANY query rule Jeff Kell
Re: ANY query rule Luis Daniel Lucio Quiroz
Re: Unrecognised syslog facility/priority in snort Mayur Patil
Re: Unrecognised syslog facility/priority in snort Mayur Patil
Re: Unrecognised syslog facility/priority in snort Mayur Patil
Re: Unrecognised syslog facility/priority in snort Mayur Patil
Interesting observation with with so rules James Lay
Re: Interesting observation with with so rules Y M
Snort.org Blog: Snort VRT Default Ruleset Rebalancing Joel Esler
Re: Interesting observation with with so rules James Lay
Re: Interesting observation with with so rules Y M
Re: Interesting observation with with so rules James Lay
Re: Interesting observation with with so rules James Lay
Re: Interesting observation with with so rules James Lay
snort and BGP Jeff d'Ambly
Re: snort and BGP James Lay
how to specify collecting packets on more then one interface snorty
Fwd: Question about snort rules Fernando Villegas Acevedo
Question about snort rules Fernando Villegas Acevedo
Re: Beginner Rule Problem Joel Esler
Re: 2955 sigs for registered users Joel Esler
Re: Zbot variant sigs Joel Esler
RAR File Detection Ginski, Richard
Re: Zbot variant sigs Y M
Doing the KanKan James Lay
Re: Doing the KanKan Joel Esler

Saturday, 12 October

Re: how to specify collecting packets on more then one interface James Lay
Re: RAR File Detection James Lay
Re: ANY query rule wkitty42
Re: ANY query rule wkitty42
Re: Interesting observation with with so rules wkitty42
Re: Interesting observation with with so rules wkitty42
Re: Interesting observation with with so rules James Lay
Re: Zabbix for Snort performance monitoring [Solved] Anshuman Anil Deshmukh

Sunday, 13 October

Re: Unrecognised syslog facility/priority in snort Mayur Patil
question about snort anomaly detection mohammad mahdizadeh
Re: Unrecognised syslog facility/priority in snort praveen_recker .
Reputation Preprocessor setests setests
DAQ. Configure "error checking for libpcap version >= "1.0.0"... n" Salvo
Re: DAQ. Configure "error checking for libpcap version >= "1.0.0"... n" wkitty42
Re: Reputation Preprocessor James Lay

Monday, 14 October

Pulledpork duplicate rules C. L. Martinez
Re: RAR File Detection Ginski, Richard
Re: Pulledpork duplicate rules JJC
Re: Pulledpork duplicate rules C. L. Martinez
Re: Pulledpork duplicate rules JJC
Re: question about snort anomaly detection Russ Combs
Re: Pulledpork duplicate rules C. L. Martinez
Re: Pulledpork duplicate rules James Lay
Re: RAR File Detection James Lay
Re: RAR File Detection Ginski, Richard
Re: RAR File Detection James Lay
Sourcefire VRT Certified Snort Rules Update 2013-10-14 Research
Re: Pulledpork duplicate rules JJC
Re: Pulledpork duplicate rules James Lay
Re: Pulledpork duplicate rules carlopmart
Re: Pulledpork duplicate rules carlopmart
Re: Pulledpork duplicate rules James Lay
Re: Pulledpork duplicate rules JJ Cummings
Re: Pulledpork duplicate rules Stark, Vernon L.

Tuesday, 15 October

Re: Pulledpork duplicate rules JJ Cummings
Re: Pulledpork duplicate rules wkitty42
Issue related to Blacklists Anshuman Anil Deshmukh
Re: Pulledpork duplicate rules Stark, Vernon L.
Re: Pulledpork duplicate rules Stark, Vernon L.
Re: Pulledpork duplicate rules Stark, Vernon L.
Re: Pulledpork duplicate rules James Lay
Re: Pulledpork duplicate rules waldo kitty
Snort.org Blog: Sourcefire VRT Certified Snort Rules Update for 10/14/2013 Joel Esler
Egobot James Lay
Re: Issue related to Blacklists Joel Esler
pulled pork updates Johnny Venter
Re: pulled pork updates Joel Esler
Re: pulled pork updates JJC
Re: Egobot Nick Randolph
Re: Egobot James Lay
Re: snort and BGP Jeff d'Ambly
Sourcefire VRT Certified Snort Rules Update 2013-10-15 Research
Snort.org Blog: Sourcefire VRT Certified Snort Rules Update for 10/15/2013, Rule Rebalancing Joel Esler
Logstash James Lay
Re: Logstash Jeremy Hoel
Re: DAQ. Configure "error checking for libpcap version >= "1.0.0"... n" Salvo
Re: Logstash James Lay
Pulled Pork Verifying Rule Updates Matt Brichetto

Wednesday, 16 October

Re: DAQ. Configure "error checking for libpcap version >= "1.0.0"... n". Problem Solved. Salvo
snort 2.9.5.5 from source - error on make Roland RoLaNd
Re: Issue related to Blacklists Anshuman Anil Deshmukh
snort.conf network variables Roland RoLaNd
Additional KanKan sig James Lay
Re: Issue related to Blacklists Joel Esler

Thursday, 17 October

Re: Issue related to Blacklists Anshuman Anil Deshmukh
Re: Issue related to Blacklists Russ Combs
Sourcefire VRT Certified Snort Rules Update 2013-10-17 Research
Re: Issue related to Blacklists [SOLVED] Anshuman Anil Deshmukh
Network cards for IPS & query related to PFRING Anshuman Anil Deshmukh

Friday, 18 October

Fwd: Unrecognised syslog facility/priority in snort Mayur Patil
snort and barnyard2 using a lot of resources Roland RoLaNd
Re: snort and barnyard2 using a lot of resources Peter Bates
[snort-users] About attribute replacement Mayur Patil
Re: Fwd: Unrecognised syslog facility/priority in snort Peter Bates
Feature request: isdataat ability in specific (preprocessor) buffers Bad Horse
Re: Feature request: isdataat ability in specific (preprocessor) buffers Joel Esler
Re: Feature request: isdataat ability in specific (preprocessor) buffers Bad Horse
Re: [snort-users] About attribute replacement Joel Esler
Re: [snort-users] About attribute replacement Mayur Patil
Re: Feature request: isdataat ability in specific (preprocessor) buffers Joel Esler
Re: Zabbix for Snort performance monitoring [Solved] Anshuman Anil Deshmukh

Saturday, 19 October

Re: [snort-users] About attribute replacement Mayur Patil
Re: [snort-users] About attribute replacement waldo kitty

Sunday, 20 October

Hi Snort Users! JS
Adware/Toolbar? Y M
Re: Zabbix for Snort performance monitoring [Solved] Anshuman Anil Deshmukh
Re: Network cards for IPS & query related to PFRING Anshuman Anil Deshmukh
Re: Zabbix for Snort performance monitoring [Solved] Eric G

Monday, 21 October

NFQ DAQ "module version issue" on Debian Bobby Venal
Re: Network cards for IPS & query related to PFRING Anshuman Anil Deshmukh
Snort 2.9.5 and ERPSAN; malformed packages Bart Jan Kelter
Community Rules and Pulled Pork Ron Haines
Tenda router backdoor James Lay
Re: Community Rules and Pulled Pork Jeremy Hoel

Tuesday, 22 October

Re: Community Rules and Pulled Pork Joel Esler
Re: Tenda router backdoor Joel Esler
NFQ DAQ "module version issue" on Debian Bobby Venal
Flowbits config Anshuman Anil Deshmukh
Re: Flowbits config Joel Esler
Re: Flowbits config Peter Bates
Re: Flowbits config Anshuman Anil Deshmukh
[SPAM] Re: Flowbits config Dave Venman
Duplicate rules & rule parser Anshuman Anil Deshmukh
Re: Duplicate rules & rule parser JJ Cummings
Re: Duplicate rules & rule parser Peter Bates
Snort not detecting MS08-067 LaTonya Hall
Re: Duplicate rules & rule parser Anshuman Anil Deshmukh
Re: Duplicate rules & rule parser Anshuman Anil Deshmukh
Re: Duplicate rules & rule parser Peter Bates
http_preprocessor question KA L
Re: Snort not detecting MS08-067 rmkml
Re: Snort not detecting MS08-067 Joel Esler
Re: Flowbits config Joel Esler
Re: Duplicate rules & rule parser Joel Esler
Sourcefire VRT Certified Snort Rules Update 2013-10-22 Research
Re: Snort not detecting MS08-067 LaTonya Hall
My email ID Amtul Saboor
ShodanHQ Rule Geoff Serrao
Re: ShodanHQ Rule Joel Esler
Re: ShodanHQ Rule Geoffrey Serrao
Oracle SQL Obfuscation Rule Nicholas Mavis
Re: Oracle SQL Obfuscation Rule Joel Esler

Wednesday, 23 October

Fwd: pulled pork updates Johnny Venter
Re: Fwd: pulled pork updates Johnny Venter
Re: Fwd: pulled pork updates Peter Bates
http_preprocessor chunk_length parameter KA L
Snort not generating alerts Matt .
Re: Snort not detecting MS08-067 LaTonya Hall
Re: Snort not detecting MS08-067 Jeremy Hoel
Re: Snort not detecting MS08-067 James Lay
Re: Snort not detecting MS08-067 LaTonya Hall
Re: Snort not detecting MS08-067 Joel Esler
Sample snort.conf not updated? Stark, Vernon L.
Re: Feature request: isdataat ability in specific (preprocessor) buffers Bad Horse
Re: Feature request: isdataat ability in specific (preprocessor) buffers Joel Esler
Re: Sample snort.conf not updated? Joel Esler
Re: Duplicate rules & rule parser Anshuman Anil Deshmukh
Re: Feature request: isdataat ability in specific (preprocessor) buffers Bad Horse

Thursday, 24 October

Re: Duplicate rules & rule parser JJ Cummings
Re: Duplicate rules & rule parser Anshuman Anil Deshmukh
Re: Network cards for IPS & query related to PFRING Anshuman Anil Deshmukh
disabling specific snort rules Roland RoLaNd
Re: Network cards for IPS & query related to PFRING Peter Bates
Re: Network cards for IPS & query related to PFRING Anshuman Anil Deshmukh
Re: Duplicate rules & rule parser Peter Bates
Re: disabling specific snort rules James Lay
Re: Feature request: isdataat ability in specific (preprocessor) buffers Joshua Kinard
Re: Feature request: isdataat ability in specific (preprocessor) buffers Joshua Kinard
Re: Feature request: isdataat ability in specific (preprocessor) buffers Joel Esler
Re: disabling specific snort rules Roland RoLaNd
Snort and Banyard2 no data in logs. Salvo
Re: disabling specific snort rules James Lay
Re: disabling specific snort rules JJC
Re: disabling specific snort rules waldo kitty
Sourcefire VRT Certified Snort Rules Update 2013-10-24 Research
Re: Snort and Banyard2 no data in logs. waldo kitty

Friday, 25 October

Re: Duplicate rules & rule parser Anshuman Anil Deshmukh
Multiple SID's for same type of event Anshuman Anil Deshmukh
Re: Snort not generating alerts James Dickenson
Re: Multiple SID's for same type of event waldo kitty
Re: Multiple SID's for same type of event Anshuman Anil Deshmukh
Snort logs are empty Salvo
Re: Snort logs are empty Salvo
Interesting article James Lay
Re: Duplicate rules & rule parser Joel Esler
Re: Duplicate rules & rule parser JJC
Logging Packets with Snort Johnny Venter
Re: Logging Packets with Snort Jeremy Hoel
Re: Logging Packets with Snort Johnny Venter
Re: Logging Packets with Snort Jeremy Hoel
Re: Logging Packets with Snort Johnny Venter
Re: Logging Packets with Snort Jeremy Hoel
Re: Logging Packets with Snort Johnny Venter
Re: Logging Packets with Snort Jeremy Hoel
Re: Logging Packets with Snort Johnny Venter
Re: Logging Packets with Snort Jeremy Hoel
Re: Logging Packets with Snort Johnny Venter
Re: Logging Packets with Snort Jeremy Hoel

Saturday, 26 October

Re: Duplicate rules & rule parser Anshuman Anil Deshmukh
Recall: Duplicate rules & rule parser Anshuman Anil Deshmukh
Re: Duplicate rules & rule parser Eric G
Re: Duplicate rules & rule parser Joel Esler
Re: Network cards for IPS & query related to PFRING Mark W. Jeanmougin

Sunday, 27 October

Re: disabling specific snort rules Roland RoLaNd
Re: disabling specific snort rules James Lay
[help,urgent] Using PCRE to match packets in hex Yoyo Lam
Re: Duplicate rules & rule parser Anshuman Anil Deshmukh
Re: [help,urgent] Using PCRE to match packets in hex Jeremy Hoel
Re: [help,urgent] Using PCRE to match packets in hex Yoyo Lam
Re: [help,urgent] Using PCRE to match packets in hex waldo kitty
Re: [help,urgent] Using PCRE to match packets in hex JJ Cummings
Re: [help,urgent] Using PCRE to match packets in hex rmkml
Re: disabling specific snort rules Joel Esler
Re: [help,urgent] Using PCRE to match packets in hex Yoyo Lam
Re: [help,urgent] Using PCRE to match packets in hex Yoyo Lam
Re: [help,urgent] Using PCRE to match packets in hex rmkml
Re: [help,urgent] Using PCRE to match packets in hex rmkml
Re: [help,urgent] Using PCRE to match packets in hex Yoyo Lam

Monday, 28 October

Re: NFQ DAQ "module version issue" on Debian Bobby Venal
Zero day attack protection Anshuman Anil Deshmukh
Re: Zero day attack protection sockstat
Re: Zero day attack protection Saint Crusty
Re: [help,urgent] Using PCRE to match packets in hex Yoyo Lam
Re: [help,urgent] Using PCRE to match packets in hex Yoyo Lam
Re: Compile so rules in C language Mayur Patil
Queries regarding FRAG3 & STREAM5 Anshuman Anil Deshmukh
Re: Zero day attack protection Joel Esler
Re: Queries regarding FRAG3 & STREAM5 Hui Cao
Re: NFQ DAQ "module version issue" on Debian waldo kitty
Re: Interesting article Rodrigo Montoro(Sp0oKeR)

Tuesday, 29 October

PulledPork 0.7.0 on windows does not update rules folder ResQue
PulledPork 0.7.0 on windows does not update rules folder ResQue
Re: PulledPork 0.7.0 on windows does not update rules folder JJC
Re: Zero day attack protection Saint Crusty
Re: Zero day attack protection Joel Esler
Sourcefire VRT Certified Snort Rules Update 2013-10-29 Research
Re: Zero day attack protection Kevin Ross

Wednesday, 30 October

Snort Instance Nicholas Horton
Re: Snort Instance James Lay
Re: Snort Instance Nicholas Horton
Re: Snort Instance James Lay
Fwd: unsock option Mary
Compiling Snort Source Code version 2.9 in Windows with Visual Studio 2008 Ong Wen Jian
Snort on iPhone Miso Patel
request Irani Player
Configuration Issues Ernest Okoromi
Snort not generating alerts Matt .
Re: Snort not detecting MS08-067 LaTonya Hall
Re: Snort not generating alerts James Lay
Re: Compiling Snort Source Code version 2.9 in Windows with Visual Studio 2008 Geoffrey Serrao
Re: Snort Instance Nicholas Horton
Re: Snort not generating alerts rmkml
Re: Snort on iPhone Hui Cao
Re: Snort on iPhone Steven Sturges
Re: Snort on iPhone Victor Roemer
Re: Fwd: unsock option Hui Cao
new sig for detecting Apache / PHP RCE rmkml
Re: new sig for detecting Apache / PHP RCE Joel Esler
Re: Snort on iPhone Joel Esler
Re: request Joel Esler
Re: new sig for detecting Apache / PHP RCE rmkml
Pony checkin James Lay
Re: Pony checkin James Lay

Thursday, 31 October

@snort.log empty files anagha b
Re: Pony checkin Joel Esler
Per License Oinkcode LaTonya Hall
Re: Per License Oinkcode waldo kitty
Sourcefire VRT Certified Snort Rules Update 2013-10-31 Research
Snort.org Blog: Sourcefire VRT Certified Snort Rules Update for 10/31/2013 Joel Esler

Friday, 01 November

Barnyard2 reports database insert errors Dave Corsello
Pulledpork issue 142 Anshuman Anil Deshmukh
Re: Pulledpork issue 142 JJC
Re: Barnyard2 reports database insert errors beenph

Saturday, 02 November

Re: Barnyard2 reports database insert errors Dave Corsello
Re: Barnyard2 reports database insert errors beenph
Re: Snort.org Blog: Sourcefire VRT Certified Snort Rules Update for 10/31/2013 Anshuman Anil Deshmukh
Re: Barnyard2 reports database insert errors waldo kitty
Writing Preprocessor For Snort Amtul Saboor
Re: Barnyard2 reports database insert errors Dave Corsello
Re: Barnyard2 reports database insert errors Dave Corsello
Re: Snort.org Blog: Sourcefire VRT Certified Snort Rules Update for 10/31/2013 Joel Esler
Re: Barnyard2 reports database insert errors beenph

Sunday, 03 November

Snort Rule and FTP server quocviet nguyen
RE : Snort Rule and FTP server rmkml
Re: Barnyard2 reports database insert errors Dave Corsello
Re: Snort Rule and FTP server Joel Esler
Re: Writing Preprocessor For Snort Joel Esler
Re: Writing Preprocessor For Snort Mayur Patil
Snortsam with snort quocviet nguyen
Re: Snortsam with snort Luis Daniel Lucio Quiroz

Monday, 04 November

Re: Snortsam with snort quocviet nguyen
Re: Snortsam with snort quocviet nguyen
snort stop unexpectedly Jorge G. Perez
Re: snort stop unexpectedly Joel Esler
Re: Barnyard2 reports database insert errors Dave Corsello
Re: Barnyard2 reports database insert errors beenph
Re: snort stop unexpectedly Edward Borgoyn

Tuesday, 05 November

Incremental latency when ping via Snort inline Wei-li Tang
Pulled Pork 0.7.0 Issues Turnbough, Bradley E.
Re: Barnyard2 reports database insert errors Dave Corsello
Re: Barnyard2 reports database insert errors waldo kitty
Re: Barnyard2 reports database insert errors Dave Corsello
TIFF images in MS-Office documents used in targeted attacks James Lay
Re: Barnyard2 reports database insert errors waldo kitty

Wednesday, 06 November

Sourcefire VRT Certified Snort Rules Update 2013-11-05 Research
Logstash and snort James Lay
Snort.org Blog: Sourcefire VRT Certified Snort Rules Update for 11/05/2013 Joel Esler
Re: TIFF images in MS-Office documents used in targeted attacks Paul Bottomley
Re: TIFF images in MS-Office documents used in targeted attacks Joel Esler
Re: TIFF images in MS-Office documents used in targeted attacks James Lay
Re: Writing Preprocessor For Snort Amtul Saboor
Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword L0rd Ch0de1m0rt
Re: Feature request: isdataat ability in specific (preprocessor) buffers L0rd Ch0de1m0rt

Thursday, 07 November

Re: Queries regarding FRAG3 & STREAM5 Anshuman Anil Deshmukh
SNORT vs WANGUARD Florent Bautista
Re: Feature request: isdataat ability in specific (preprocessor) buffers Joel Esler
Re: [Snort-devel] Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword Bad Horse
Re: Pulled Pork 0.7.0 Issues Turnbough, Bradley E.
Re: Pulled Pork 0.7.0 Issues JJC
Sourcefire VRT Certified Snort Rules Update 2013-11-07 Research
(no subject) Seydou Mamadou Traore
Re: Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword Bhagya Bantwal
Re: Writing Preprocessor For Snort Russ Combs
UNKNOWN METHOD Jorge G. Perez
Re: UNKNOWN METHOD Mayur Patil
Re: UNKNOWN METHOD Mayur Patil
Re: UNKNOWN METHOD waldo kitty
Re: UNKNOWN METHOD waldo kitty
Re: Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword L0rd Ch0de1m0rt

Friday, 08 November

Sourcefire VRT Certified Snort Rules for CVE-2013-3906 Jeremy Scott
Re: [Snort-sigs] Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword rmkml
Re: Sourcefire VRT Certified Snort Rules for CVE-2013-3906 Patrick Mullen
Re: Writing Preprocessor For Snort Russ Combs
Re: Writing Preprocessor For Snort Amtul Saboor

Saturday, 09 November

Re: Queries regarding FRAG3 & STREAM5 Anshuman Anil Deshmukh
Re: Queries regarding FRAG3 & STREAM5 waldo kitty

Sunday, 10 November

Writing a dynamic rules donfack zeufack hermann

Monday, 11 November

Regarding Snort Rules Prashant Mishra
Re: Writing a dynamic rules Patrick Mullen
Unified2 file corrupt? Zach Hatsis
scan rules on pfsense Leonardo Pezente
Writing normalizer for snort Harry Härpfer
Re: scan rules on pfsense Joel Esler
Re: Regarding Snort Rules Joel Esler

Tuesday, 12 November

Re: Writing normalizer for snort Matt Watchinski
Re: Queries regarding FRAG3 & STREAM5 Hui Cao
Re: Writing normalizer for snort highend root
RHEL 6.0 documenation Irlam, Oliver J. [RA]
Re: RHEL 6.0 documenation Jeremy Hoel
Re: scan rules on pfsense Leonardo Pezente
SNORT DB question Glass, Keith
Fake Conferences CSCI and WORLDCOMP of Hamid Arabnia abbasakbar
Fake Conferences CSCI and WORLDCOMP of Hamid Arabnia abbasakbar
Fake Conferences CSCI and WORLDCOMP of Hamid Arabnia abbasakbar
working snort > 2.9.5 on archs with strict memory alignment? Markus Lude
Re: working snort > 2.9.5 on archs with strict memory alignment? Bhagya Bantwal
Asprox Sig James Lay
Fwd: Re: Asprox Sig James Lay
Offered new rule for detect last Outlook/Crypto API... rmkml
Correlation rules Jaime Nebrera
Sourcefire VRT Certified Snort Rules Update 2013-11-12 Research
Re: [Emerging-Sigs] Offered new rule for detect last Outlook/Crypto API... Will Metcalf

Wednesday, 13 November

Barnyard2 / Extra Data Logging -- Status Turnbough, Bradley E.
Re: Unified2 file corrupt? Bhagya Bantwal
Re: Offered new rule for detect last Outlook/Crypto API... rmkml
show snort rules Nguyen Quoc Viet
Syntax for "ignore=" in Pulledpork Stark, Vernon L.
tools in tools folder not automatically built from .spec file?!?! Turnbough, Bradley E.
Re: Syntax for "ignore=" in Pulledpork Y M
Re: show snort rules Y M
so_rules fidel69
How to send packets to Snort without usin g pcap. aneeque khan
Problems with Snort Installation on Windows 7 ƒabricio -
Re: Unified2 file corrupt? Zach Hatsis
'conifg stateful' option Jeremy Hoel

Thursday, 14 November

Re: 'conifg stateful' option waldo kitty
Re: 'conifg stateful' option Jeremy Hoel
@empty rules files anagha b
Re: @empty rules files waldo kitty
I am unable to View rules for specific events in snort database Sri ranjani
About README.UNSOCK WangChuang
Re: Writing Preprocessor For Snort Gregory W. MacPherson
Re: Compiling Snort Source Code version 2.9 in Windows with Visual Studio 2008 Ong Wen Jian
Re: Compiling Snort Source Code version 2.9 in Windows with Visual Studio 2008 Ong Wen Jian
Re: About README.UNSOCK Bhagya Bantwal
disablesid.conf Issue (was Syntax for "ignore=" in Pulledpork) Stark, Vernon L.
Expiro sigs Y M
HNAP Admin attempts James Lay
Attribute Table question SnortFan
Re: HNAP Admin attempts lists () packetmail net
First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: Expiro sigs Geoffrey Serrao
Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
Re: HNAP Admin attempts James Lay
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: Expiro sigs Y M
Re: Expiro sigs Y M
Re: HNAP Admin attempts Carlos Pacho
Re: Expiro sigs Carlos Pacho
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: Attribute Table question Jefferson, Shawn
Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: HNAP Admin attempts rmkml
Re: [Snort-users] disablesid.conf Issue (was Syntax for "ignore=" in Pulledpork) James Lay
Re: HNAP Admin attempts waldo kitty
Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
Re: HNAP Admin attempts Y M
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: HNAP Admin attempts James Lay
Sourcefire VRT Certified Snort Rules Update 2013-11-14 Research
Re: tools in tools folder not automatically built from .spec file?!?! Turnbough, Bradley E.
Re: Barnyard2 / Extra Data Logging -- Status Turnbough, Bradley E.
Re: tools in tools folder not automatically built from .spec file?!?! Russ Combs

Friday, 15 November

Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
quick sanity check please? Jamie Riden
Re: quick sanity check please? James Lay
Re: quick sanity check please? Y M
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: First time snorting ... ERROR: The dynamic detection library ... Y M
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay

Saturday, 16 November

difference between pulledpork -P and -n option? DA_667

Sunday, 17 November

Re: difference between pulledpork -P and -n option? waldo kitty

Monday, 18 November

@empty rules files anagha b
Rule to match all non-HTTP traffic Stephen Teti
Re: Attribute Table question SnortFan
Sourcefire VRT Certified Snort Rules Update 2013-11-18 Research
Re: Attribute Table question Joel Esler (jesler)
Re: About README.UNSOCK WangChuang
elmountasser.eloukoud () gmail com el mountasser el oukoud
Snort 2.9.5.6 Now Available Snort Releases
Snort 2.9.5.6 Now Available Snort Releases
Snort 2.9.6 Beta Now Available Snort Releases
Snort 2.9.6 Beta Now Available Snort Releases

Tuesday, 19 November

@portscan log not showing all decoys anagha b
JBoss AS Exploit Sig James Lay
FATAL ERROR: Cannot decode data link type 113 waldo kitty
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Re: FATAL ERROR: Cannot decode data link type 113 James Lay
Re: FATAL ERROR: Cannot decode data link type 113 waldo kitty
Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay
Linux Fokirtor Backdoor Y M
Re: First time snorting ... ERROR: The dynamic detection library ... Alan McKay

Wednesday, 20 November

Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
Re: First time snorting ... ERROR: The dynamic detection library ... waldo kitty
Using snort in an PCI DSS environment elof
Re: Using snort in an PCI DSS environment James Lay
Re: Using snort in an PCI DSS environment John Millican
Re: Using snort in an PCI DSS environment elof
Re: Using snort in an PCI DSS environment elof
Re: Using snort in an PCI DSS environment James Lay
Re: Using snort in an PCI DSS environment John Millican
Re: Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword L0rd Ch0de1m0rt
Re: Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword rmkml

Thursday, 21 November

Sourcefire VRT Certified Snort Rules Update 2013-11-20 Research
What to do? Ellad G. Yatsko
Re: Using snort in an PCI DSS environment elof
Re: What to do? James Lay
Re: What to do? Ellad G. Yatsko
Update: new release on ETPLC project ! rmkml

Friday, 22 November

Re: What to do? Ellad G. Yatsko
Need help to know which files to be changed in Dynamic preprocessor starter kit Amtul Saboor
Re: What to do? Ellad G. Yatsko
Re: What to do? James Lay
Re: Using snort in an PCI DSS environment James Lay
Re: What to do? Ellad G. Yatsko
Re: Need help to know which files to be changed in Dynamic preprocessor starter kit Russ Combs
Re: Need help to know which files to be changed in Dynamic preprocessor starter kit Amtul Saboor
Re: [Snort-devel] Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword Bhagya Bantwal
Sourcefire VRT Certified Snort Rules Update 2013-11-22 Research
Snort variables longer than 65535 bytes Jon Larson

Monday, 25 November

Is it a bug? Ellad G. Yatsko
I2P traffic Paul Bottomley
Columbia, MD Snort Users Group Harley H
[Snort-user] requires libdnet.so.1 LaTonya Hall
Re: [Snort-user] requires libdnet.so.1 Joel Esler (jesler)

Tuesday, 26 November

Re: Columbia, MD Snort Users Group Joel Esler (jesler)
Re: Need help to know which files to be changed in Dynamic preprocessor starter kit Amtul Saboor
IPS does not detect MS12-020 vulnerability via backtrack module Lukas Matt
snort nmap not working Mustafa Karci
Re: IPS does not detect MS12-020 vulnerability via backtrack module Joel Esler (jesler)
i hvave error when run snort abdelkader . djebbar
Malware detection with Snort Daniel Calvo Castro
Timezone issue in SNORT LOG Balamurali
Re: i hvave error when run snort Joel Esler (jesler)
Re: Malware detection with Snort Salvo
Re: Malware detection with Snort Mayur Patil
Re: Timezone issue in SNORT LOG waldo kitty
Re: Timezone issue in SNORT LOG Joel Esler (jesler)
Re: i hvave error when run snort waldo kitty
Sourcefire VRT Certified Snort Rules Update 2013-11-26 Research
Re: Malware detection with Snort Maxwell, Jamison [HDS]
Snort.org Blog: Sourcefire VRT Certified Snort Rules Update for 11/26/2013 Joel Esler (jesler)
Re: IPS does not detect MS12-020 vulnerability via backtrack module Joel Esler (jesler)
Air Installer PUA James Lay
Re: Air Installer PUA James Lay
How to use Snort to detect DNS reverse lookup queries Qinwen Hu

Wednesday, 27 November

Issues with suppressing some preproc rules Mike Hale
False Positive on VRT 28039 Jeremy Hoel
Re: Issues with suppressing some preproc rules waldo kitty
Re: Issues with suppressing some preproc rules Mike Hale
Re: False Positive on VRT 28039 Joel Esler (jesler)
Re: False Positive on VRT 28039 Jeremy Hoel
Re: False Positive on VRT 28039 Joel Esler (jesler)
[HITB-Announce] #HITB2014AMS Call for Papers Now Open Hafez Kamal
DPX Output Verification Amtul Saboor

Thursday, 28 November

@snort alert anagha b
prepossesors (fsportscan) not working Mustafa Karci
Re: prepossesors (fsportscan) not working Rodrigo Montoro(Sp0oKeR)

Friday, 29 November

Re: @snort alert waldo kitty
Snort not taking nmap second time (scan) Mustafa Karci
Please verif Output of DPX (sample dynamic preprocessor tool kit) Amtul Saboor
Re: @snort alert Randal T. Rioux
Re: (no subject) Randal T. Rioux
install avm31982

Saturday, 30 November

Re: install waldo kitty

Sunday, 01 December

Snort 0,01 seconds too late? Gregor Mahnic
Re: Snort 0,01 seconds too late? waldo kitty
SNORT/BASE does not fill the BASE Homepage Portscan bar olivier a
Snort variables longer than 65535 bytes Jon Larson

Monday, 02 December

[SPAM] Re: Snort variables longer than 65535 bytes Dave Venman
Re: Timezone issue in SNORT LOG Russ Combs
Re: Is it a bug? Russ Combs
Re: Snort variables longer than 65535 bytes Russ Combs
Re: Snort variables longer than 65535 bytes Joshua Kinard
compile options? Budinich Galvez, Luis Alberto
Re: Snort not taking nmap second time (scan) Russ Combs
Re: compile options? waldo kitty
Re: Please verif Output of DPX (sample dynamic preprocessor tool kit) Russ Combs
Sourcefire VRT Certified Snort Rules Update 2013-12-02 Research

Tuesday, 03 December

Re: compile options? Hui Cao (huica)
Re: compile options? Hui Cao (huica)
BASE does not fill the BASE Homepage Portscan bar oalabeatrix
Alerting on internal TCP connection attempts to non-existent services or hosts . Jonathan Heard
Re: Alerting on internal TCP connection attempts to non-existent services or hosts . James Lay
Re: Alerting on internal TCP connection attempts to non-existent services or hosts . Stark, Vernon L.

Wednesday, 04 December

Confusion about SID 25282 Lukas Matt
Re: Confusion about SID 25282 Joel Esler (jesler)
http://webres1.pand.ctmail.com/ Dwayne Hottinger
Re: http://webres1.pand.ctmail.com/ paul meding
Re: http://webres1.pand.ctmail.com/ Dwayne Hottinger
Re: http://webres1.pand.ctmail.com/ waldo kitty
Re: Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword L0rd Ch0de1m0rt
[snort-devel] Chainning pre-processors Emiliano Fausto
Re: [snort-devel] Chainning pre-processors Hui Cao
Re: [snort-devel] Chainning pre-processors Emiliano Fausto
Re: [snort-devel] Chainning pre-processors Hui Cao
Re: [snort-devel] Chainning pre-processors Emiliano Fausto
Re: [snort-devel] Chainning pre-processors Hui Cao
Re: [snort-devel] Chainning pre-processors Emiliano Fausto
Re: [snort-devel] Chainning pre-processors Hui Cao
Re: [snort-devel] Chainning pre-processors Emiliano Fausto
Re: [snort-devel] Chainning pre-processors Hui Cao
Re: [Snort-users] Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword rmkml
Re: [snort-devel] Chainning pre-processors Emiliano Fausto
Re: [snort-devel] Chainning pre-processors Hui Cao
Defines on preprocids.h Rodrigo Pimpão
Re: Defines on preprocids.h Hui Cao
OT: DNS sinkhole question Jason Haar

Thursday, 05 December

Re: OT: DNS sinkhole question waldo kitty
A question in regards to rules, ACK and flow. Jeremy Hoel
Re: A question in regards to rules, ACK and flow. Joel Esler (jesler)
Re: A question in regards to rules, ACK and flow. Jeremy Hoel
Re: Alerting on internal TCP connection attemptsto non-existent services or hosts . . Jonathan Heard
Re: [snort-devel] Chainning pre-processors Emiliano Fausto
Re: [snort-devel] Chainning pre-processors Hui Cao
Sourcefire VRT Certified Snort Rules Update 2013-12-05 Research
Re: [snort-devel] Chainning pre-processors Emiliano Fausto
Re: [snort-devel] Chainning pre-processors Hui Cao
Re: [Snort-users] Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword L0rd Ch0de1m0rt
Re: [snort-devel] Chainning pre-processors Emiliano Fausto
Cannot make default /usr/lib/snort_dynamicpreprocessor into ...lib64... cjgd7-facebook () yahoo com
Re: Cannot make default /usr/lib/snort_dynamicpreprocessor into ...lib64... Hui Cao

Friday, 06 December

FTP / Telnet normalization and anomaly detection Frank Kirschner
Re: FTP / Telnet normalization and anomaly detection James Lay
Errors on using Dynamic Rules Zach Hatsis
RE : Re: FTP / Telnet normalization and anomaly detection rmkml

Saturday, 07 December

Re: FTP / Telnet normalization and anomaly detection Frank Kirschner

Sunday, 08 December

Reputation preprocessor isn't blocking traffic Dave Corsello

Monday, 09 December

Re: [Snort-users] Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword Joel Esler (jesler)
Rovnix Sig Y M
Re: [Snort-users] [Snort-devel] Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword lists () packetmail net
Re: [Snort-sigs] [Snort-users] Serious problems Snort 2.9 with relative content matches using http_inspect preprocessor and http_uri keyword Joel Esler (jesler)

Tuesday, 10 December

Re: Reputation preprocessor isn't blocking traffic Joel Esler (jesler)
FW: Re: FTP / Telnet normalization and anomaly detection Frank Kirschner
[snort-users] Stream5 doesn't take into account every TCP segment Emiliano Fausto
Re: [snort-users] Stream5 doesn't take into account every TCP segment Emiliano Fausto
preprocessor drop packets issues Han Zhang
Re: Reputation preprocessor isn't blocking traffic Dave Corsello
Help with a rule Tyler MacPherson
Re: Help with a rule lists () packetmail net
Re: Help with a rule Kyle Creyts
Re: Help with a rule Y M
Sourcefire VRT Certified Snort Rules Update 2013-12-10 Research
Re: Help with a rule Joel Esler (jesler)

Wednesday, 11 December

Re: preprocessor drop packets issues Ed Borgoyn (eborgoyn)
Re: preprocessor drop packets issues Han Zhang
Snort UDP traffic in loopback interface evalues evalues
Re: Snort UDP traffic in loopback interface rmkml

Thursday, 12 December

Snort gives different stats for different runs with the same set of inputs Mahendra Ladhe
Re: Snort UDP traffic in loopback interface evalues evalues
Re: Snort UDP traffic in loopback interface Lowe, Richard B
Sourcefire VRT Certified Snort Rules Update 2013-12-12 Research
Re: Snort gives different stats for different runs with the same set of inputs Russ Combs
Snort 2.9.6 RC Now Available Snort Releases
Snort 2.9.6 RC Now Available Snort Releases

Friday, 13 December

Re: Snort gives different stats for different runs with the same set of inputs Mahendra Ladhe
Re: Snort gives different stats for different runs with the same set of inputs Stephen Fernandis [IT Shared Services – Hub]
Error 504 when fetching Rules Stark, Vernon L.
Re: Error 504 when fetching Rules Joel Esler (jesler)
Re: Error 504 when fetching Rules James Lay
Re: Error 504 when fetching Rules Joel Esler (jesler)
Re: Snort UDP traffic in loopback interface Максим Завилов
Re: Error 504 when fetching Rules Stark, Vernon L.
Re: Reputation preprocessor isn't blocking traffic Dave Corsello
Re: Snort UDP traffic in loopback interface Joel Esler (jesler)
CF Admin parser access sig James Lay
Re: CF Admin parser access sig Nicholas Mavis
Re: CF Admin parser access sig James Lay
CyberHack Christmas Challenge John York

Saturday, 14 December

Re: DPX Output Verification Amtul Saboor
vrt subscribe installation Felix Hosner

Monday, 16 December

Bad range in Snort rules Lukas Matt
Re: DPX Output Verification Russ Combs
Re: Bad range in Snort rules Joel Esler (jesler)

Tuesday, 17 December

OPENFPC Proxy merge Kevin Ross
Re: OPENFPC Proxy merge Joel Esler (jesler)
Re: OPENFPC Proxy merge Jeremy Hoel
Re: OPENFPC Proxy merge John York
Sourcefire VRT Certified Snort Rules Update 2013-12-17 Research
Rules with options like http_uri of flow onno
Re: Rules with options like http_uri of flow rmkml
Re: OPENFPC Proxy merge Leon Ward
Re: OPENFPC Proxy merge Kevin Ross
Re: Rules with options like http_uri of flow Nicholas Mavis

Wednesday, 18 December

Re: Rules with options like http_uri of flow Onno van der Leun
Re: OPENFPC Proxy merge Kevin Ross
Re: OPENFPC Proxy merge Kevin Ross
Re: Rules with options like http_uri of flow Joel Esler (jesler)
Re: OPENFPC Proxy merge Jeremy Hoel
Re: Rules with options like http_uri of flow Onno van der Leun
Pulled Pork error SnortFan
Re: Pulled Pork error onno () b00z nl
Re: Pulled Pork error SnortFan
Re: Pulled Pork error Joel Esler (jesler)

Thursday, 19 December

Re: OPENFPC Proxy merge Kevin Ross
Re: OPENFPC Proxy merge Kevin Ross
Can snort dump full pcap of alert? Onno van der Leun
Re: Can snort dump full pcap of alert? Y M
Re: Can snort dump full pcap of alert? Heine Lysemose
Sourcefire VRT Certified Snort Rules Update 2013-12-19 Research

Friday, 20 December

Re: Can snort dump full pcap of alert? Kevin Ross
Re: Can snort dump full pcap of alert? Lay, James
Feedback on rule testing James Dickenson
Commented out rules. SnortFan
Re: Commented out rules. Joel Esler (jesler)
Re: Commented out rules. Y M
Re: Feedback on rule testing Rob MacGregor
Re: Feedback on rule testing James Dickenson

Saturday, 21 December

Re: Commented out rules. SnortFan
Snort work is slowing Ozgur Karatas
Blocking Domain name like example.com Ayodele Okeowo
Re: Blocking Domain name like example.com waldo kitty

Sunday, 22 December

Testing my own rules/signatures on pcap file Beenish Raza
Snort & Barnyard James

Monday, 23 December

Re: Testing my own rules/signatures on pcap file Joel Esler (jesler)
Re: [Snort-devel] Testing my own rules/signatures on pcap file guillaume . daleux
snort normalization trouble // not working as I expect Lil Evil
Re: snort normalization trouble // not working as I expect Joel Esler (jesler)
Periodic save rule profiling logs Kiryukhin Andrey
Re: Blocking Domain name like example.com Ayodele Okeowo
Re: snort normalization trouble // not working as I expect Lil Evil
Re: Periodic save rule profiling logs Ayodele Okeowo
Re: snort normalization trouble // not working as I expect Joel Esler (jesler)
Re: Snort & Barnyard James
Re: Snort & Barnyard Ayodele Okeowo
Re: Blocking Domain name like example.com waldo kitty
Re: Blocking Domain name like example.com Ayodele Okeowo
Re: Periodic save rule profiling logs waldo kitty

Tuesday, 24 December

sublime text 2 tmlanguage syntax highlighting for snort rules? John Babio
Sourcefire VRT Certified Snort Rules Update 2013-12-24 Research
Re: sublime text 2 tmlanguage syntax highlighting for snort rules? Victor Roemer
Re: sublime text 2 tmlanguage syntax highlighting for snort rules? John Babio

Thursday, 26 December

Re: Need help to know which files to be changed in Dynamic preprocessor starter kit Amtul Saboor
Re: Need help to know which files to be changed in Dynamic preprocessor starter kit Emiliano Fausto
Logs Storage Problem Angel Chiriboga Torres
Re: Need help to know which files to be changed in Dynamic preprocessor starter kit Russ Combs
Re: Logs Storage Problem Ayodele Okeowo
Help to understand functions Rodrigo Pimpão
File magic rules for 2.9.6, what options are required? Joshua Kinard

Friday, 27 December

Re: File magic rules for 2.9.6, what options are required? Joel Esler (jesler)
Hey, Snort Users JS
Re: File magic rules for 2.9.6, what options are required? Joshua Kinard
Re: File magic rules for 2.9.6, what options are required? Joshua Kinard
Re: File magic rules for 2.9.6, what options are required? Joel Esler (jesler)
Re: File magic rules for 2.9.6, what options are required? Hui Cao
RHEL 6 with Snort 2.9.5.6-1 and PCRE 8.33 install issue (UNCLASSIFIED) Wright, Jonathon S CTR (US)
Re: File magic rules for 2.9.6, what options are required? Joshua Kinard
Re: RHEL 6 with Snort 2.9.5.6-1 and PCRE 8.33 install issue (UNCLASSIFIED) Joshua Kinard
Re: RHEL 6 with Snort 2.9.5.6-1 and PCRE 8.33 install issue (UNCLASSIFIED) Wright, Jonathon S CTR (US)
Re: File magic rules for 2.9.6, what options are required? Joshua Kinard
Re: File magic rules for 2.9.6, what options are required? Victor Roemer

Saturday, 28 December

snort with SVM Amir Azhdari
RHEL 6 with Snort 2.9.5.6-1 and PCRE 8.33 install issue (UNCLASSIFIED) Wright, Jonathon S CTR (US)
Re: RHEL 6 with Snort 2.9.5.6-1 and PCRE 8.33 install issue (UNCLASSIFIED) Joshua Kinard
Re: RHEL 6 with Snort 2.9.5.6-1 and PCRE 8.33 install issue (UNCLASSIFIED) Wright, Jonathon S CTR (US)
Re: File magic rules for 2.9.6, what options are required? Joshua Kinard

Monday, 30 December

Re: OPENFPC Proxy merge Leon Ward
Re: OPENFPC Proxy merge Leon Ward
Re: Snort & Barnyard James Hodge
Re: [Snort-devel] Testing my own rules/signatures on pcap file Beenish Raza
installing Snort OSX 10.9.1 Jason Buker
Re: installing Snort OSX 10.9.1 James Lay
Re: Snort & Barnyard Ayodele Okeowo

Tuesday, 31 December

How to define External Port lists to be ignored in snort Omar Sattar/NOC/Nexlinx
Question about SNORT Sensor Placement bk6662
Re: Question about SNORT Sensor Placement Jeremy Hoel
Sourcefire VRT Certified Snort Rules Update 2013-12-31 Research
snort on alix 2d13 Celso Fajardo
Previous period Next period
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]