[Snort-users] BotHunter Question

Maverick myeaddress at ...11827...
Mon Apr 25 22:38:26 EDT 2011


Never mind my earlier post, I found out that bothunter has its own
snort with bothunter specific rule. I was using files generated from
an independent snort. Still if you are a bothunter user I would love
to get in touch.

Best.
JJ
On Mon, Apr 25, 2011 at 3:26 PM, Maverick <myeaddress at ...11827...> wrote:
> Hi,
>
> Has anyone used the Snortlogs with Bothunter ? I am trying to use
> alert files generated by my snort in Batch mode of BotHunter but it
> seems its not able to parse those logs successfully. However when I
> run logs given on BotHunter site
> (http://www.bothunter.net/samples-new/AdRotator1.A.pcap.alerts) it
> runs successfully and generates output file.
>
> Also , please let me know if you have used pcap files directly with BotHunter.
>
> Thanks
> John
>




More information about the Snort-users mailing list