[Oisf-users] Supported files for extraction
Peter Manev
petermanev at gmail.com
Sun Apr 15 06:06:08 UTC 2018
> On 15 Apr 2018, at 02:40, Carl Rotenan <carlrotenan at gmail.com> wrote:
>
> Hello,
>
> I'm just getting started with Suricata and I'm looking to find out if files from an FTP stream can be extracted. I have read that HTTP and SMTP but I can't find anything definitive on FTP.
>
For some examples and info
You can have a look here -
http://suricata.readthedocs.io/en/latest/file-extraction/file-extraction.html
And here -
https://github.com/OISF/suricata/blob/master/rules/files.rules
Feedback on the latest Suricata or 4.1beta1 is appreciated ! :)
> Thanks,
>
> Carl
> _______________________________________________
> Suricata IDS Users mailing list: oisf-users at openinfosecfoundation.org
> Site: http://suricata-ids.org | Support: http://suricata-ids.org/support/
> List: https://lists.openinfosecfoundation.org/mailman/listinfo/oisf-users
>
> Conference: https://suricon.net
> Trainings: https://suricata-ids.org/training/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20180415/0af36428/attachment.html>
More information about the Oisf-users
mailing list