[Oisf-users] Suricata providing so_rules?

Charlie Dyer charlierwdyer at gmail.com
Thu Jul 13 04:56:01 UTC 2017


As I understand it Snort has the ability to somewhat midly obfuscate
certain rules by writing them in C and providing them in binary form,
mostly to satisfy NDAs or to protect vulnerability details where exploits
are not really in the public domain.

How does Suricata cater for such rules?

Many thanks
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20170713/f7068d50/attachment.html>

More information about the Oisf-users mailing list