snort-sigs March 2012 archive
Main Archive Page > Month Archives  > snort-sigs archives
snort-sigs: By Thread

snort-sigs By Thread

SubjectAuthor Date
[Snort-sigs] Snort rule to detect inside hosts!Aymen AlAwady31 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-29Research29 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-27Research27 Mar 2012
[Snort-sigs] IMAP Qualcomm WorldMail IMAP Literal Token Parsing Buffer OverflowYew Chuan Ong25 Mar 2012
Re: [Snort-sigs] IMAP Qualcomm WorldMail IMAP Literal Token Parsing Buffer Overflowrmkml25 Mar 2012
--> Re: [Snort-sigs] IMAP Qualcomm WorldMail IMAP Literal Token Parsing Buffer OverflowYew Chuan Ong25 Mar 2012
--> Re: [Snort-sigs] IMAP Qualcomm WorldMail IMAP Literal Token Parsing Buffer Overflowrmkml25 Mar 2012
--> Re: [Snort-sigs] IMAP Qualcomm WorldMail IMAP Literal Token Parsing Buffer OverflowJoel Esler25 Mar 2012
Re: [Snort-sigs] IMAP Qualcomm WorldMail IMAP Literal Token Parsing Buffer OverflowJoel Esler25 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-22Research22 Mar 2012
[Snort-sigs] Proposed Signature for Keystrokes iKeyMonitor iOS KeyloggerCommunity Signatures20 Mar 2012
Re: [Snort-sigs] Proposed Signature for Keystrokes iKeyMonitor iOS KeyloggerBad Horse21 Mar 2012
--> Re: [Snort-sigs] Proposed Signature for Keystrokes iKeyMonitor iOS KeyloggerCommunity Signatures21 Mar 2012
--> Re: [Snort-sigs] Proposed Signature for Keystrokes iKeyMonitor iOS KeyloggerMatt Jonkman21 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-20Research20 Mar 2012
[Snort-sigs] Snort 2.9.0.5 EOL noticeJoel Esler19 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-16Research16 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-15Research15 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-13Research13 Mar 2012
[Snort-sigs] Proposed Signatures - Blackhole Exploit KitCommunity Proposed13 Mar 2012
Re: [Snort-sigs] Proposed Signatures - Blackhole Exploit KitJoel Esler13 Mar 2012
--> Re: [Snort-sigs] Proposed Signatures - Blackhole Exploit KitCommunity Signatures13 Mar 2012
--> Re: [Snort-sigs] Proposed Signatures - Blackhole Exploit KitJoel Esler13 Mar 2012
--> Re: [Snort-sigs] Proposed Signatures - Blackhole Exploit Kitlists_at_nospam14 Mar 2012
--> Re: [Snort-sigs] Proposed Signatures - Blackhole Exploit KitJoel Esler14 Mar 2012
--> Re: [Snort-sigs] Proposed Signatures - Blackhole Exploit Kitlists_at_nospam14 Mar 2012
--> Re: [Snort-sigs] Proposed Signatures - Blackhole Exploit KitJoel Esler14 Mar 2012
[Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS Blackhole Terse JavaScript hex 16 byte document.location JavaScript redirect to showthread.php"Community Proposed13 Mar 2012
Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS Blackhole Terse JavaScript hex 16 byte document.location JavaScript redirect to showthread.php"Joel Esler13 Mar 2012
--> Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS Blackhole Terse JavaScript hex 16 byte document.location JavaScript redirect to showthread.php"Community Signatures13 Mar 2012
--> Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS Blackhole Terse JavaScript hex 16 byte document.location JavaScript redirect to showthread.php"Joel Esler13 Mar 2012
--> Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS Blackhole Terse JavaScript hex 16 byte document.location JavaScript redirect to showthread.php"Community Signatures13 Mar 2012
--> Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS Blackhole Terse JavaScript hex 16 byte document.location JavaScript redirect to showthread.php"Joel Esler13 Mar 2012
[Snort-sigs] Querstion about Chinese IP addressesMiso Patel12 Mar 2012
Re: [Snort-sigs] Querstion about Chinese IP addressesGiles Coochey12 Mar 2012
Re: [Snort-sigs] Querstion about Chinese IP addressesDean Freeman12 Mar 2012
[Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS - Bredolab infected asset POSTing check-in"Community Proposed12 Mar 2012
Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS - Bredolab infected asset POSTing check-in"Community Proposed12 Mar 2012
Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS - Bredolab infected asset POSTing check-in"Joel Esler12 Mar 2012
--> Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS - Bredolab infected asset POSTing check-in"Community Signatures12 Mar 2012
[Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euYew Chuan Ong11 Mar 2012
Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euAlex Kirk12 Mar 2012
--> Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euMartin Holste12 Mar 2012
--> Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euJoel Esler12 Mar 2012
--> Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euCommunity Signatures12 Mar 2012
--> Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euJoel Esler12 Mar 2012
--> Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euMartin Holste12 Mar 2012
--> Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euJoel Esler12 Mar 2012
--> Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euMartin Holste12 Mar 2012
--> Re: [Snort-sigs] BOTNET-CNC Possible host infection - excessive DNS queries for .euJoel Esler12 Mar 2012
[Snort-sigs] Only an empty Alert file :(Dean Farwood11 Mar 2012
Re: [Snort-sigs] Only an empty Alert file :(Balasubramaniam Natarajan12 Mar 2012
Re: [Snort-sigs] Only an empty Alert file :(Joel Esler12 Mar 2012
--> Re: [Snort-sigs] Only an empty Alert file :(Dean Farwood12 Mar 2012
--> Re: [Snort-sigs] Only an empty Alert file :(Joel Esler12 Mar 2012
--> Re: [Snort-sigs] Only an empty Alert file :(Dean Farwood13 Mar 2012
--> Re: [Snort-sigs] Only an empty Alert file :(Joel Esler13 Mar 2012
--> Re: [Snort-sigs] Only an empty Alert file :(Community Signatures13 Mar 2012
[Snort-users] Snort.org Blog: Rule Category ReorganizationJoel Esler09 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-08Research08 Mar 2012
[Snort-sigs] Snort rule doesn't generate alerts when hosts responding simultaneouslyAymen AlAwady08 Mar 2012
[Snort-sigs] Fwd: Snort rule doesn't generate alerts when hosts responding simultaneouslyAymen AlAwady12 Mar 2012
Re: [Snort-sigs] Snort rule doesn't generate alerts when hosts responding simultaneouslyBalasubramaniam Natarajan12 Mar 2012
--> Re: [Snort-sigs] Snort rule doesn't generate alerts when hosts responding simultaneouslyBalasubramaniam Natarajan12 Mar 2012
--> Re: [Snort-sigs] Snort rule doesn't generate alerts when hosts responding simultaneouslyJoel Esler12 Mar 2012
Re: [Snort-sigs] UNSUBSCRIBECommunity Signatures07 Mar 2012
[Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS Blackhole landing page with specific structure - prototype catch qq"Community Proposed07 Mar 2012
Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS Blackhole landing page with specific structure - prototype catch qq"Joel Esler07 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-06Research06 Mar 2012
[Snort-sigs] sid:19825 Apache KillerMohd Fauzi Bin Suwarno06 Mar 2012
Re: [Snort-sigs] sid:19825 Apache KillerAlex Kirk06 Mar 2012
[Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"Community Proposed05 Mar 2012
Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"Joel Esler05 Mar 2012
--> Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"Joel Esler05 Mar 2012
--> Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"Community Proposed05 Mar 2012
--> Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"Joel Esler05 Mar 2012
--> Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"waldo kitty30 Mar 2012
--> Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"Joel Esler30 Mar 2012
--> Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"waldo kitty31 Mar 2012
--> Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"Joel Esler31 Mar 2012
--> Re: [Snort-sigs] Necessary Change for "1:21417 <-> SPECIFIC-THREATS hostile PDF associated with Laik exploit kit"Dave Venman30 Mar 2012
[Snort-sigs] FP on WEB-CLIENT Microsoft Internet Explorer Script Engine Stack Exhaustion Denial of Service attemptBalasubramaniam Natarajan02 Mar 2012
[Snort-sigs] Sourcefire VRT Certified Snort Rules Update 2012-03-01Research01 Mar 2012
Re: [Snort-sigs] Proposed Signature - "COMMUNITY SPECIFIC-THREATS High Probability Blackhole Landing with catch qq"Matt Olney01 Mar 2012