[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-04-03

Research research at ...435...
Tue Apr 3 15:51:14 EDT 2012


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Sourcefire VRT Certified Snort Rules Update

Synopsis:
This release introduces eleven new rule categories and contains new and
modified rules in several categories.

Details:
This release introduces eleven new rule categories:

 File-Office
 File-Other
 File-PDF
 Indicator-Compromise
 Indicator-Obfuscation
 Policy-Multimedia
 Policy-Other
 Policy-Social
 PUA-P2P
 PUA-Toolbars
 Server-Mail

These categories have been populated with rules that were formerly in
policy.rules, leaving 36 rules in that category.

This release contains new and modified rules in the backdoor,
botnet-cnc, dos, exploit, file-identify, file-office, file-other,
file-pdf, indicator-compromise, indicator-obfuscation, mysql,
policy-multimedia, policy-other, policy-social, pua-p2p, pua-toolbars,
server-mail, specific-threats, spyware-put, voip, web-client and
web-php rule sets to provide coverage for emerging threats from these
technologies.

For a complete list of new and modified rules please see:

http://www.snort.org/vrt/docs/ruleset_changelogs/changes-2012-04-03.html
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFPe1IWaBoqZBVJfwMRAn3JAJ4rZH5R9jZkCpkPV5N1LMvuTkYslgCeIGcr
2Gl/Uu37Ynab1wmYeh3Ppts=
=iqFG
-----END PGP SIGNATURE-----





More information about the Snort-sigs mailing list