If you’ve seen the entropy rule keyword in Suricata’s pre-8.0.0 code, there’s a new blog post that gives the background and how it can be used—special thanks to Chris Wakelin for the inspiration.
2 Likes
Well done, Jeff!
I’ve spoken to others and they consider it a very useful addition to Suricata 8!
1 Like