[Oisf-users] suricata do not support "xbits"

苏 哲 suzhe_ffgg at outlook.com
Fri Sep 7 07:08:55 UTC 2018


I try suricata 4.0.5 and 4.1.0 and try "xbits" with this example<https://cipherdyne.org/fwsnort/xbits_metasploit_example.rules>, I receive error:

"noalert" is not a valid setting for xbits.

"isset,is_attack_step1" is not a valid setting for xbits.

I google xbits and those errors, but didn't find anyone talking about it.

is there anyone know what is the reason? and what should I do?


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20180907/021327cc/attachment.html>

More information about the Oisf-users mailing list