Bitcoin Mining Detection
Hi all, may I know with recent issue with bitcoin mining getting more active, will there be any new patch or new component for Suricata to have this ability to detect these activities?
Seeking your opinion and advise.
It might just be a matter of enabling the bitcoin rules in snort_app-detect.rules.
Also you might want to blacklist these servers https://github.com/ZeroDot1/CoinBlockerLists/blob/master/MiningServerIPList.txt
I'm sorry for posting here but I'm looking for this new patch, did you find anything like that?