NethServer Documentation

Download 0,69 Mb.

Pdf ko'rish

bet	213/338
Sana	29.12.2021
Hajmi	0,69 Mb.
	#78388

1 ... 209 210 211 212 213 214 215 216 ... 338

Bog'liq
docs-nethserver-org-en-v7

29.1 Rule categories
Suricata is configured to use free rules from
https://rules.emergingthreats.net/
.
1
Rules are divided into categories listed below.
ActiveX Attacks and vulnerabilities(CVE, etc.) regarding ActiveX.
Attack Response Responses indicative of intrusion—LMHost file download, certain banners, Metasploit Meterpreter
kill command detected, etc. These are designed to catch the results of a successful attack. Things like “id=root”,
or error messages that indicate a compromise may have happened.
Botcc (Bot Command and Control) These are auto-generated from several sources of known and confirmed active
Botnet and other Command and Control hosts. Updated daily, primary data source is Shadowserver.org. Bot
1
Categories documentation source:
proofpoint
-
ETPro Category Descriptions
151

Download 0,69 Mb.

Do'stlaringiz bilan baham:

1 ... 209 210 211 212 213 214 215 216 ... 338