Snort mailing list archives

Re: signature testing (win32)

From: Mark Villanova <mvillanova () megapathdsl net>
Date: 10 Sep 2002 20:14:11 -0500

On Tue, 2002-09-10 at 19:06, netsec novice wrote:

Have SNORT/ACID set up and would like to verify that I'm detecting traffic 
on required subnets.  I have seen reference to a tool called 'sneeze' that 
will generate false alarms but I have not been able to find it.  Is there 
another way I can verify my setup by creating alerts that won't be 
destructive?

You can use snot, stick or nessus.  They will all set off the bells and
whistles

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

signature testing (win32) netsec novice (Sep 10)
- Re: signature testing (win32) Matt Kettler (Sep 10)
- Re: signature testing (win32) Erek Adams (Sep 11)
- Re: signature testing (win32) Mark Villanova (Sep 15)
- Re: signature testing (win32) Robby Desmond (Sep 15)
- <Possible follow-ups>
- RE: signature testing (win32) Hicks, John (Sep 11)