snort-rules-default_2.9.7.0-5_all.deb


Advertisement

Description

snort-rules-default - flexible Network Intrusion Detection System - ruleset

Distribution: Ubuntu 16.04 LTS (Xenial Xerus)
Repository: Ubuntu Universe i386
Package name: snort-rules-default
Package version: 2.9.7.0
Package release: 5
Package architecture: all
Package type: deb
Installed size: 1.78 KB
Download size: 137.89 KB
Official Mirror: archive.ubuntu.com
Snort is a libpcap-based packet sniffer/logger which can be used as a lightweight network intrusion detection system. It features rules-based logging and can perform content searching/matching in addition to detecting a variety of other attacks and probes, such as buffer overflows, stealth port scans, CGI attacks, SMB probes, and much more. Snort has a real-time alerting capability, with alerts being sent to syslog, a separate "alert" file, or even to a Windows computer via Samba. This is the Snort default ruleset, which provides a basic set of network intrusion detection rules developed by the Snort community. They can be used as a basis for development of additional rules. Users using Snort to defend networks in production environments are encouraged to update their local rulesets as described in the included documentation or using the oinkmaster package.

Alternatives

Provides

  • snort-rules

    Download

    Source package: snort

    Install Howto

    1. Update the package index:
      # sudo apt-get update
    2. Install snort-rules-default deb package:
      # sudo apt-get install snort-rules-default

    Files

    • /etc/snort/classification.config
    • /etc/snort/community-sid-msg.map
    • /etc/snort/gen-msg.map
    • /etc/snort/reference.config
    • /etc/snort/rules/attack-responses.rules
    • /etc/snort/rules/backdoor.rules
    • /etc/snort/rules/bad-traffic.rules
    • /etc/snort/rules/chat.rules
    • /etc/snort/rules/community-bot.rules
    • /etc/snort/rules/community-deleted.rules
    • /etc/snort/rules/community-dos.rules
    • /etc/snort/rules/community-exploit.rules
    • /etc/snort/rules/community-ftp.rules
    • /etc/snort/rules/community-game.rules
    • /etc/snort/rules/community-icmp.rules
    • /etc/snort/rules/community-imap.rules
    • /etc/snort/rules/community-inappropriate.rules
    • /etc/snort/rules/community-mail-client.rules
    • /etc/snort/rules/community-misc.rules
    • /etc/snort/rules/community-nntp.rules
    • /etc/snort/rules/community-oracle.rules
    • /etc/snort/rules/community-policy.rules
    • /etc/snort/rules/community-sip.rules
    • /etc/snort/rules/community-smtp.rules
    • /etc/snort/rules/community-sql-injection.rules
    • /etc/snort/rules/community-virus.rules
    • /etc/snort/rules/community-web-attacks.rules
    • /etc/snort/rules/community-web-cgi.rules
    • /etc/snort/rules/community-web-client.rules
    • /etc/snort/rules/community-web-dos.rules
    • /etc/snort/rules/community-web-iis.rules
    • /etc/snort/rules/community-web-misc.rules
    • /etc/snort/rules/community-web-php.rules
    • /etc/snort/rules/ddos.rules
    • /etc/snort/rules/deleted.rules
    • /etc/snort/rules/dns.rules
    • /etc/snort/rules/dos.rules
    • /etc/snort/rules/experimental.rules
    • /etc/snort/rules/exploit.rules
    • /etc/snort/rules/finger.rules
    • /etc/snort/rules/ftp.rules
    • /etc/snort/rules/icmp-info.rules
    • /etc/snort/rules/icmp.rules
    • /etc/snort/rules/imap.rules
    • /etc/snort/rules/info.rules
    • /etc/snort/rules/local.rules
    • /etc/snort/rules/misc.rules
    • /etc/snort/rules/multimedia.rules
    • /etc/snort/rules/mysql.rules
    • /etc/snort/rules/netbios.rules
    • /etc/snort/rules/nntp.rules
    • /etc/snort/rules/oracle.rules
    • /etc/snort/rules/other-ids.rules
    • /etc/snort/rules/p2p.rules
    • /etc/snort/rules/policy.rules
    • /etc/snort/rules/pop2.rules
    • /etc/snort/rules/pop3.rules
    • /etc/snort/rules/porn.rules
    • /etc/snort/rules/rpc.rules
    • /etc/snort/rules/rservices.rules
    • /etc/snort/rules/scan.rules
    • /etc/snort/rules/shellcode.rules
    • /etc/snort/rules/smtp.rules
    • /etc/snort/rules/snmp.rules
    • /etc/snort/rules/sql.rules
    • /etc/snort/rules/telnet.rules
    • /etc/snort/rules/tftp.rules
    • /etc/snort/rules/virus.rules
    • /etc/snort/rules/web-attacks.rules
    • /etc/snort/rules/web-cgi.rules
    • /etc/snort/rules/web-client.rules
    • /etc/snort/rules/web-coldfusion.rules
    • /etc/snort/rules/web-frontpage.rules
    • /etc/snort/rules/web-iis.rules
    • /etc/snort/rules/web-misc.rules
    • /etc/snort/rules/web-php.rules
    • /etc/snort/rules/x11.rules
    • /usr/share/doc/snort-rules-default/NEWS.Debian.gz
    • /usr/share/doc/snort-rules-default/README.Debian
    • /usr/share/doc/snort-rules-default/changelog.Debian.gz
    • /usr/share/doc/snort-rules-default/copyright

    Changelog

    Advertisement
    Advertisement