[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2014-11-24
research at ...435...
Mon Nov 24 16:55:48 EST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Sourcefire VRT Certified Snort Rules Update
This release adds and modifies rules in several categories.
The VRT has added and modified multiple rules in the blacklist,
browser-plugins, exploit-kit, file-identify, file-office, file-other,
malware-cnc, os-windows, policy-other and server-webapp rule sets to
provide coverage for emerging threats from these technologies.
New rules to detect attacks from the Regin malware are also included in
this release and are identified with GID 1, SIDs 32621 through 32624.
For a complete list of new and modified rules please see:
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
-----END PGP SIGNATURE-----
More information about the Snort-sigs