[Oisf-users] New Post by OISF Board Member Randy Caldejon

[Cooper F. Nelson]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I've been doing behavioral analysis on suricata effectively for a few
years using custom rules and post-processing of the alert files.

This works well enough, but I will admit a more robust implementation
that includes some sort of scripting engine would be a fantastic addition.

On 10/2/2015 7:03 AM, Leonard Jacobs wrote:
> Nicely done. Randy, glad to see I am not the only board member that
> believes behavioral analysis is needed in Suricata.
> 
> I look forward to see everyone in Barcelona. It is going to be an
> exciting conference.
> 
> Leonard Jacobs, MBA, CISSP, CSSA
> President/CEO
> Netsecuris Inc.
> P 952-641-1421 ext. 20
> http://www.netsecuris.com


- -- 
Cooper Nelson
Network Security Analyst
UCSD ACT Security Team
cnelson at ucsd.edu x41042
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.17 (MingW32)

iQEcBAEBAgAGBQJWDrG6AAoJEKIFRYQsa8FWKGIIAKz5vZxGYUSS/ZjpS163X/7o
Wohhrm43/kaS6cyXyJhlVrMeKpp7Punh5vF59cueyqT1EzVKtnkSTqPHwn5OsUBI
8HDnK9Th3BUZG8oQ675T4oOqF0UOoeA3myU6n94IqcgTGzRpL8KQg6igqcagTwLM
ND+wAq0D8BQoM/Zw5HCxurtHJ3n2pHxPsAxMPkqIq4JECw1HlS2DB/a/DtfI35Cx
sMvc6L1EA9zifHm+Zy/DpRbw8d/SClajBwLBVC1oZD8Dri/4KNu2PnTyJQcMjc+g
8tNzHDnEdPaBBWVrMWggn5wdkBlM0nnpdSdnQJ4VTHdVrNlCHbPPsU7tu5bB+Jw=
=v92B
-----END PGP SIGNATURE-----