0
我配置了Snort規則來檢測ping和TCPSnort規則來檢測HTTP,HTTPS和電子郵件
alert icmp any any -> any any (msg:"ping";sid:10000001;rev:0;)
如何配置Snort規則來檢測HTTP,HTTPS和電子郵件?
我配置了Snort規則來檢測ping和TCPSnort規則來檢測HTTP,HTTPS和電子郵件
alert icmp any any -> any any (msg:"ping";sid:10000001;rev:0;)
如何配置Snort規則來檢測HTTP,HTTPS和電子郵件?
Snort規則來檢測HTTP:
alert tcp any any -> $HOME_NET 80 (msg:"http test"; sid:10000100; rev:005;)