[Oisf-users] [Emerging-Sigs] Daily Ruleset Update Summary 10/05/2012

Victor Julien lists at inliniac.net
Sat Oct 6 08:02:09 UTC 2012

On 10/06/2012 05:41 AM, Will Metcalf wrote:
> We have uploaded a couple of PoC
> LuaJIT rules for testing with Suricata 1.4.x written by Chris Wakelin
> and myself.  
> https://rules.emergingthreatspro.com/research/suri-luajit-experimental/
> These rules do detection for BHEK and CVE-2012-4681 by extracting class
> file from a jar and inspecting them.  No rule perf profiling has been
> done but we would love to get your feedback on these rules.  See Victor
> Juliens blog entries on LuaJIT for more
> info. http://blog.inliniac.net/tag/luajit/. In addition to the
> directions Victor has you will need the lua-zip package which can be
> installed on Ubunut-12.04-LTS by issuing the following command 
>  sudo apt-get install liblua5.1-zip0

Nice work by Will and Chris, looking forward to see how these work!

Victor Julien
PGP: http://www.inliniac.net/victorjulien.asc

More information about the Oisf-users mailing list