[Snort-users] Snort 3.0 is not detecting shell code attacks

João Pedro oladj at live.com.pt
Sun Jun 16 19:39:30 EDT 2019


I'm testing snort 3.0 with Community rules.
Besides triggering alerts from port scans, it is not detecting Buffer 
Overflow attacks (.i.e. made with Metasploit).
Is there a problem with the current rules in Snort 3.0? Should I 
activate/config something else?

Ps: I'm testing Snort from .pcap files



More information about the Snort-users mailing list