[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2014-11-24

Research research at ...435...
Mon Nov 24 16:55:48 EST 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Sourcefire VRT Certified Snort Rules Update

Synopsis:
This release adds and modifies rules in several categories.

Details:
The VRT has added and modified multiple rules in the blacklist,
browser-plugins, exploit-kit, file-identify, file-office, file-other,
malware-cnc, os-windows, policy-other and server-webapp rule sets to
provide coverage for emerging threats from these technologies.

New rules to detect attacks from the Regin malware are also included in
this release and are identified with GID 1, SIDs 32621 through 32624.

For a complete list of new and modified rules please see:

https://www.snort.org/advisories
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)

iD8DBQFUc6lkQLjqI2QiHVMRAhelAJ9JtagCiKkf9dYNxqol78jyZj7zkQCgrxam
WxIiX/lGdsmeK4j6fmHsN30=
=qO6u
-----END PGP SIGNATURE-----





More information about the Snort-sigs mailing list