-
请问一下,有支持ZEEK的计划么?
如果没有,可以在此基础上进行集成zeek么,有没有相关的文档支持,非常感谢
-
**Description:** Documenting the project is key in its usability. We are continuously documenting the different tools and features we develop and build new learning materials to facilitate skills deve…
U039b updated
3 weeks ago
-
does SSLproxy forward the SSL decrypted traffic to NIDS (for example to a suricata server) for analyze?
is possible?
-
This project is a great idea! Thank you so much for sharing. Iam trying to get this running with zabbix 4. I had to delete the connection to the linux server template and some items from the template …
-
There appears to be an issue handling the oinkcode where it doesn't add a / appropriately between it and the domain.
>Use of uninitialized value $Snort_path in -B at ./pulledpork.pl line 1773.
>…
-
Each role needs to be checked and update any ansible modules or tasks that are deprecated, failing or giving warnings.
-
Rule that end their last option without a semi-colon fail parsing, while snort accepts them. e.g.
```
Exception: end of option not found: alert tcp $EXTERNAL_NET 53 -> $HOME_NET any (msg:"NF - LOC…
-
e.g.
```
alert http any any -> $HOME_NET any (msg:"OTX - FILE MD5 from pulse Inside the spyware campaign against Argentine troublemakers"; filemd5:55d79cc967db8c7bb8cb5a72.txt; reference: url, otx.…
-
On cool tool already exists: https://github.com/DCSO/fever integrate that !
-
Hello everyone.
I am experiencing a problem with the composition of endpoints where I am using the kernel interfaces.
More precisely, I have a chain consisting of:
nsc - suricata - squid - nse.
…