Tox chat snort rule
rpbaetens last edited by
I have some users using a disallowed application but am having a hard time stopping it.
Does anyone know of, or have a different resource I can work with, that would know how to detect and block this type of traffic?
This site provides a little insight in case you have not heard of it. https://tox.chat/
Thanks in advance!
fsansfil last edited by
Not familiar with the product but with Suricata you can block using TLS/SSL cert/fingerprint info
OR with File magic you can intercept PGP key exchange, if they dont use TLS.
Or you could block .chat domain name request…
Shouldnt be too hard to block another chat service...