Bleeding Threats Support in SNORT



  • Is anyone working on this currently? I had an adhock setup to add support for retrieving the bleeding threats signatures and adding them to the list but I was having issues with it extracting the tarball once it was downloaded. was following the same syntax as how it handles the official signatures. it would download the file, but would for all intents just ignore the command to extract. no errors or any hints why it wasnt doing anything.

    I've unfortunately lost my changes due to squid axing my system and requiring a rebuild, I'm going to try and recreate my past work as much as possible.


Log in to reply