[Snort-users] pcaps for triggering rules

Joel Esler jesler at ...1935...
Fri Aug 24 09:35:40 EDT 2012


On Aug 24, 2012, at 9:14 AM, Pratik Narang <pratik.cse.bits at ...11827...> wrote:

> That is an interesting piece of information for me. So if 'content'
> checks are for "very specific malware" downloads, what other option do
> I have to do some testing with Snort rules?

How about metasploit?

--
Joel Esler
Senior Research Engineer, VRT
OpenSource Community Manager
Sourcefire
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20120824/fb8ecd28/attachment.html>


More information about the Snort-users mailing list