[Snort-users] Tools invisible to SNORT

Juan Camilo Valencia juan.valencia at ...16028...
Wed Apr 17 09:49:04 EDT 2013


Hi guys,

I have a question about this,
http://news.thehackernews.com/topera-ipv6-port-scanner-invisible-to-snort-ids?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+thnsecurity+%28The+Hacker+News%29&_m=3n.009a.187.mp0aof3v2x.49l

is this true?, if yes, how is possible to develop a set of rules to detect
the behavior of this tool.

Note: I hope that Joel help me with the answer,

Regards,

-- 
JUAN CAMILO VALENCIA VARGAS
Ingeniero de Operaciones
SeguraTec S.A.S
Calle 11 # 43B-50 of 307
Medelllín Colombia

*“Choose a job you love, and you will never have to work a day in your life”
*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.snort.org/pipermail/snort-users/attachments/20130417/445e80b7/attachment.html>


More information about the Snort-users mailing list