[Oisf-users] Suricata Malware Capturing

Cooper F. Nelson cnelson at ucsd.edu
Fri Sep 26 23:08:31 UTC 2014


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Suricata can extract files from http sessions:

> https://redmine.openinfosecfoundation.org/projects/suricata/wiki/File_Extraction

On 9/26/2014 4:05 PM, Muhammad Asif Ihsan wrote:
> Hi,
> 
>  
> 
> I am new to suricata, I want to know that does suricata capture malwares
> and does it put together malware files in chunks and present us with the
> complete malware. I am keen to hear from you.
> 
>  
> 
> Thank you.
> 
> 
> 
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
> OISF: http://www.openinfosecfoundation.org/
> 


- -- 
Cooper Nelson
Network Security Analyst
UCSD ACT Security Team
cnelson at ucsd.edu x41042
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)

iQEcBAEBAgAGBQJUJfHvAAoJEKIFRYQsa8FW8GMIAKPzHJygv5MPz5p4hpyNMKzg
10yJtJ3GpEJPHWs4yFqZ1bfrbC+Fs9W1fXzvIJm5NVZ/et8k35cKyNwCGx4D+dR/
16/MZp8ThUS7sjN2jkRXSzrRXpiGOtf3KrFkKTPj1peccjZgOP1FQ6fzDIqSqOIj
C8TaJnC+MvALB+91UiYmksBPBp9Lyj4Y31pXKUi6i8UHXu+h8a3UvWZKNMIg9wdP
Ib4ipp/B3TPT/4eX3LIHUtpc9MMSkZVtjBn1Mf/fP//oSP48DsSKMNC/fLX9T7n7
ul/ur3KLmYy25J17SyTypypPnjspCUMmGpVL27dmonepdEjYXTneraHrJOOxArU=
=Xmbb
-----END PGP SIGNATURE-----



More information about the Oisf-users mailing list