Documents

The following setup guides have been contributed by members of the Snort Community for your use. Comments and questions on these documents should be submitted directly to the author by clicking on their names below.


Latest rule documents - Search
1-54768
This rule looks for PHP code execution attempts within HTTP traffic going towards vBulletin.
1-54767
This rule looks for PHP code execution attempts within HTTP traffic going towards vBulletin.
1-54766
This rule detects an attempted remote code execution attempt against the TCPIP kernel module in vulnerable versions of Microsoft Windows by searching for specific bytecode used to exploit this vulnerability.
1-54765
This rule detects an attempted remote code execution attempt against the TCPIP kernel module in vulnerable versions of Microsoft Windows by searching for specific bytecode used to exploit this vulnerability.
1-54761
This rule alerts when an attempt to download an executable matching ClamAV signature Win.Malware.Midie-9242514-0 is detected
1-54760
This rule alerts when an attempt to download an executable matching ClamAV signature Win.Malware.Midie-9242514-0 is detected