I am using a Pcap from malware traffic analysis
It shows alert for exe file , but doesn’t contain any hash
Whereas I can find that hash in zeek logs .
Why so
Any configuration changes in yaml
I am using a Pcap from malware traffic analysis
It shows alert for exe file , but doesn’t contain any hash
Whereas I can find that hash in zeek logs .
Why so
Any configuration changes in yaml