• Stars
    star
    110
  • Rank 316,770 (Top 7 %)
  • Language
  • Created over 11 years ago
  • Updated over 3 years ago

Reviews

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

Repository Details

Snort FAQ

Snort FAQ/Wiki

This is the official Snort FAQ/Wiki repository. It was moved from the Snort.org site to Github to allow people to contribute to it through pull requests.

To checkout all the files:

git clone git://github.com/vrtadmin/snort-faq.git

FAQ Pages

What is Snort?

What is Open Source?

What can I do with Snort?

Where can I download Snort?

What is the relationship between Snort and Cisco?

Does Cisco sell Snort?

What is a Snort Integrator?

What is the role of Talos?

I'm not receiving alerts in Snort

I'm receiving an error regarding IP Datagram length, what is the problem?

My Snort log is an empty file, what could be the cause?

Can I have help with my homework?

What is the list of Snort Supported OSes

I'm a Cisco Partner Purchasing a Subscription For a Customer

Lists

What is the mailing list etiquette?

How do I submit questions about Snort?

How do I ask a good question on the Snort list?

Snort.org

What is a registered user?

Why do I need to register?

What if I do not wish to register?

Will my information be shared with any other parties or used for marketing?

How can I provide feedback or suggestions for the site?

Abuse of Snort.org

Rules

What is a Snort rule?

What is a signature?

What is a vulnerability?

What is an exploit?

What is a protocol?

What are Community Rules?

What are Snort Subscriber Rule Set?

What is a user-defined rule?

Why are rules commented out by default?

How are rules distributed?

Resolving Flowbit Dependancies

What are the differences in the rule sets?

Shared Object Rules

Snort Subscriber Rule Set Subscription

What does having a Snort Subscriber Rule Set subscription entitle me to?

Do I have to subscribe to receive the Snort Subscriber Rule Set?

How much does a subscription cost?

If I purchase a subscription, can I deploy the rules on more than one sensor?

Can I use tools such as PulledPork to manage the subscription?

Where do I go to subscribe to the Snort Subscriber Rule Set?

Can I receive an invoice for my Snort.org purchase?

Ways to purchase a Snort Subscription

Where do I read about the refund policy?

Licensing

What is the GNU GPL?

What is the Snort Subscriber Rule Set License Agreement?/

What is the Snort Integrator License?

How is the Snort software licensed?

Why are the rules licensed separately from the software?

What license is used if I contribute code for the Snort Engine?

What license is used if I contribute a rule for Snort?

Docs

All the READMEs from the Snort tarball are uploaded here for simple indexing and reading.

README.GTP

README.PLUGINS

README.PerfProfiling

README.SMTP

README.UNSOCK

README.WIN32

README.active

README.alert_order

README.asn1

README.counts

README.csv

README.daq

README.dcerpc2

README.decode

README.decoder_preproc_rules

README.dnp3

README.dns

README.event_queue

README.file

README.file_ips

README.filters

README.flowbits

README.frag3

README.ftptelnet

README.gre

README.ha

README.http_inspect

README.imap

README.ipip

README.ipv6

README.modbus

README.multipleconfigs

README.normalize

README.pcap_readmode

README.pop

README.ppm

README.reload

README.reputation

README.rzb_saac

README.sensitive_data

README.sfportscan

README.sip

README.ssh

README.ssl

README.stream5

README.tag

README.thresholding

README.unified2

README.variables

README.session

More Repositories

1

clamav

ClamAV - Documentation is here: https://docs.clamav.net
C
3,200
star
2

pyrebox

Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU
C
1,604
star
3

GhIDA

Python
714
star
4

mutiny-fuzzer

Python
530
star
5

MBRFilter

Cisco Talos MBR Filter Driver
C
318
star
6

moflow

Release Branches for MoFlow
C++
296
star
7

ROPMEMU

ROPMEMU is a framework to analyze, dissect and decompile complex code-reuse attacks.
Python
282
star
8

Decept

Decept Network Protocol Proxy
Python
259
star
9

Ghidraaas

Python
207
star
10

DynDataResolver

Python
204
star
11

binary_function_similarity

Jupyter Notebook
186
star
12

fnc-1

Fake News Challenge
Python
173
star
13

BASS

BASS - BASS Automated Signature Synthesizer
Python
171
star
14

file2pcap

C
162
star
15

Barbervisor

Intel x86 bare metal hypervisor for researching snapshot fuzzing ideas.
Rust
145
star
16

TeslaDecrypt

Decryption Tool
C++
132
star
17

osquery_queries

Cisco Orbital - Osquery queries by Talos
96
star
18

FIRST

91
star
19

snap_wtf_macos

WTF Snapshot fuzzing of macOS targets
Python
86
star
20

FIRST-plugin-ida

Python
85
star
21

Winbox_Protocol_Dissector

Lua
67
star
22

locky

C
66
star
23

pylocky_decryptor

Python
64
star
24

cvdupdate

ClamAV Private Database Mirror Updater Tool
Python
62
star
25

smi_check

Smart Install Client Scanner
Python
61
star
26

clamav-bytecode-compiler

ClamAV ByteCode Compiler
C
60
star
27

covnavi

Python
59
star
28

IOCs

Indicators of Compromise
55
star
29

Mussels

Python
43
star
30

CASC

Python
40
star
31

clamav-safebrowsing

Python
37
star
32

freesentry

C++
34
star
33

clamav-docker

Dockerfiles for the ClamAV project
Shell
34
star
34

Re2Pcap

Python
33
star
35

oil-pumpjack

Oil Pumpjack: open source materials to create your own oil pumpjack managed by an Arduino
Python
31
star
36

FIRST-server

CSS
30
star
37

clamav-fuzz-corpus

Seed Corpus for clamav-devel oss-fuzz integration.
HTML
30
star
38

flokibot

Python
25
star
39

remcos-decoder

Talos Decryptor POC for Remcos RAT version 2.0.5 and earlier
Python
21
star
40

badgerboard

Verilog
16
star
41

crashdog

C
15
star
42

Daemonlogger

The Official Github Repository of Daemonlogger
C
14
star
43

useful-tools

Python
14
star
44

Nim-IDA-FLIRT-Generator

Nim-IDA-FLIRT-Generator
Python
13
star
45

clamav-documentation

ClamAV Documentation
JavaScript
13
star
46

clamav-mussels-cookbook

12
star
47

snort2-docker

Vim Script
10
star
48

ida_tilegx

C
6
star
49

NibiruDecrypt

C#
6
star
50

mussels-recipe-scrapbook

2
star
51

Threat-Round-Up

1
star
52

clamav-async-rs

1
star