Documents

The following setup guides have been contributed by members of the Snort Community for your use. Comments and questions on these documents should be submitted directly to the author by clicking on their names below.


Latest rule documents - Search
1-50769
This event is generated when Win.Trojan.QUADAGENT DNS tunneling beacons are detected.
1-50768
his event is generated when BONDUPDATER DNS tunneling beacons are detected.
1-50767
This event is generated when ALMA Dot DNS tunneling beacons are detected.
1-50766
This event is generated when ALMA Dash DNS tunneling beacons are detected.
1-50765
This event is generated when ISMAgent DNS tunneling beacons are detected.
1-50764
This event is generated when Helminth DNS tunneling to request what action to pursue is detected