-
Ubuntu 20 Server + psad 2.4.6 + fwsnort-1.6.8
fwsnort.sh script failing add iptables rules with last emerging-all.rules version
problem on ports with ! [!445,!1500]
seems a famliar issue…
-
I mean
> $domain modifier matching target domain:
> In some cases the $domain modifier can match not only the referrer domain, but also the target domain. This happens when all the following condi…
-
This issue was opened after reviewing the **How to integrate Wazuh with YARA** active response use case guide in the [active response manual tests issue (Wazuh 4.3.0)](https://github.com/wazuh/wazuh/i…
-
Your issue may already be reported!
Please search on the [issue tracker](./) before creating one.
## Is your feature request related to a problem?
It is not possible to install the app in devi…
-
Hi all, my friends (@Dil3mm3 and @ciastron) and I are working to implement new quark rules for a university semester project (our supervisor is @cryptax). We were analyzing Brazking malware (hash SHA2…
-
##### My issue is:
I am trying to use cuckoo and I have downloaded malware from theZoo. I have connection and it works but Yara and the Score in the report are not working. I added some rules to cu…
-
This issue tracker is **ONLY** used for requesting sensible features.
Please use [stackoverflow](https://stackoverflow.com) for supporting issues.
## What's the problem (or question)?
M…
-
### Description
Detecting and removing malware - VirusTotal integration
Wazuh has the ability to integrate with VirusTotal API, running a query when a file change is detected. For this integration…
-
Expected behavior: My alert_fast.txt file not logging alerts when src_ip is whitelisted
Actual behavior: None of the said packets are bypassed nor ignored
In snort.lua:
```
reputation =
{
…
-
When releasing a new version, the "Nightly Release' workflow builds the firmware into a zip file and a "GitHub Release" is created for a repo (for example, see the [rt-1.0.0 release](https://github.co…