Documents

The following setup guides have been contributed by members of the Snort Community for your use. Comments and questions on these documents should be submitted directly to the author by clicking on their names below.


Latest rule documents - Search
1-61894
This is a file identification rule for Microsoft Windows Extensible Storage Engine database files.
1-61893
This rule looks for strings known to be specific to ntds.dit files.
1-61892
This rule looks for strings associated with a PUA that could potentially inject into other applications or spawn a reverse shell.
1-61891
This rule looks for strings associated with a PUA that could potentially inject into other applications or spawn a reverse shell.
1-61890
This rule looks for strings associated with a reflective loader.
1-61889
This rule looks for strings associated with a reflective loader.