Can Suricata read traffic from a log server & perform analysis without an network interface to monitor
|
|
3
|
174
|
January 11, 2024
|
$HOME_NET in suricata rule ignored?
|
|
2
|
226
|
December 18, 2023
|
Dataset rules not triggering at all
|
|
2
|
126
|
December 8, 2023
|
Rules added to the rule file do not automatically apply to the suricata interface
|
|
1
|
512
|
December 6, 2023
|
Why cannot i open this kind url link in emergingthreats open rules
|
|
1
|
152
|
December 5, 2023
|
7.0.0-rc2-dev version of XXX, no Rule Profiling
|
|
4
|
148
|
December 3, 2023
|
One-To-Many Transform with InspectionBuffer
|
|
3
|
97
|
December 1, 2023
|
Confused on alert logging
|
|
1
|
120
|
December 1, 2023
|
Suricata can't search pattern in HTTP with content-type application/x-www-form-urlencoded
|
|
1
|
157
|
December 1, 2023
|
Custom Matcher: Error: detect-parse: rule 1 setup buffer dns_query but didn't add matches to it
|
|
2
|
502
|
November 30, 2023
|
Where do i find the "signature support channel"?
|
|
1
|
130
|
November 28, 2023
|
Need help with HTTP Signatures
|
|
4
|
182
|
November 18, 2023
|
Detect against sha256 hashes
|
|
9
|
269
|
October 31, 2023
|
Uni-directional TLS
|
|
5
|
287
|
October 31, 2023
|
No alert triggered on Malicious Files Hashes but found different hash value in eve.json
|
|
6
|
287
|
October 28, 2023
|
Unable to supress SURICATA STREAM alerts
|
|
3
|
329
|
October 25, 2023
|
Ping rule to detect
|
|
7
|
476
|
October 25, 2023
|
Editing Suricata rule to exclude specific string
|
|
3
|
388
|
October 25, 2023
|
IDSTower Version 2.5 released with Rules & IOCs export
|
|
0
|
254
|
October 23, 2023
|
I want to block specific word for any website, please tell me anyone how is it possible, i'm new in information security
|
|
1
|
186
|
October 23, 2023
|
Disable applayer rule
|
|
2
|
299
|
October 18, 2023
|
How to set a custom source for suricata-update including lua?
|
|
3
|
217
|
October 16, 2023
|
Question about network packets and flows
|
|
2
|
382
|
October 11, 2023
|
Http2.frametype not support detect RST_STREAM
|
|
3
|
176
|
October 11, 2023
|
Help Using Modify.Conf
|
|
5
|
230
|
October 10, 2023
|
Help Needed ! Suricata drops - ,"metadata":{"flowints":{"http.anomaly.count":1}},
|
|
5
|
193
|
October 7, 2023
|
Suricata update rules on Windows
|
|
2
|
495
|
September 27, 2023
|
NMAP ARP Detection
|
|
2
|
386
|
September 25, 2023
|
GeoIP: print country iso_code data in all logs
|
|
2
|
240
|
September 22, 2023
|
Suricata allow domain URI
|
|
1
|
742
|
September 12, 2023
|