[Snort-users] Subscription rules vs Registered rules

Kevin Ross kevross33 at ...14012...
Mon Apr 18 08:05:41 EDT 2011


Also have a look at the emergingthreats rules (
http://www.emergingthreats.net/). More focused on malware and malware
command and control as well as other stuff. It is free. You can see them
here: http://rules.emergingthreats.net/open-nogpl/snort-2.9.0/rules/

There is also sigs for IP addresses (russian business network, botnet-cnc
etc which are good for tracking down infections.

On 16 April 2011 14:35, M.Turner Turner <msbzag at ...11827...> wrote:

> Hi sir
> 1) are this rules (VRT Subscription rules)  configure and organized for
> best detection ?
> or dont any configuration and organization on these rules? ( in act of any
> rule , in config , in organize , in number of rules,...)
>
> 2) what different between Personal and Business rules? ( in act of any rule
> , in config , in organize , in number of rules,...)
>
> 3) what different between Subscription and Registered rules? ( in act of
> any rule , in config , in organize , in number of rules,...)
>
>
> thanks
>
>
> ------------------------------------------------------------------------------
> Benefiting from Server Virtualization: Beyond Initial Workload
> Consolidation -- Increasing the use of server virtualization is a top
> priority.Virtualization can reduce costs, simplify management, and improve
> application availability and disaster protection. Learn more about boosting
> the value of server virtualization. http://p.sf.net/sfu/vmware-sfdev2dev
> _______________________________________________
> Snort-users mailing list
> Snort-users at lists.sourceforge.net
> Go to this URL to change user options or unsubscribe:
> https://lists.sourceforge.net/lists/listinfo/snort-users
> Snort-users list archive:
> http://www.geocrawler.com/redir-sf.php3?list=snort-users
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20110418/35600338/attachment.html>


More information about the Snort-users mailing list