Cgisecurity.com IDS rules used in Snort 1.8.2

Topics

Tags

Favorite Links

Translate

Security Books

Archives

Recent entries...

Announcing SecTemplates.com release #4: Vulnerability Management Program Release Pack 1.0

Announcing SecTemplates.com release #3: Bug bounty program pack 1.0

Announcing SecTemplates.com release #2: External penetration testing program pack 1.0

Announcing SecTemplates.com and the incident response program pack 1.0

20 years of CGISecurity: What appsec looked like in the year 2000

My experience coleading purple team

oAuth nightmares talk

Extensive IOS hacking guide released by Security Innovation

Presentation: Problems you'll face when building a software security program

Google's intentions are good, but implementation leave MORE users vulnerable to hacking than before

Twitter

Sponsored Ads

Sponsored Ads

The Web Security Mailing List

« Fingerprinting Port 80 Attacks: A look into web server, and web application attack signatures. | Main | Opera Browser has several Javascript vulnerabilities »

Cgisecurity.com IDS rules used in Snort 1.8.2

I recently wrote some IDS rule sets I found to be useful
for snort that would help detect known, and unknown
port80 attacks. I submitted these rules to snort.org
and they liked them so much they are now included
in the newest release.

These rules were based from cgisecurity.com's paper #3
which will be released later today.

A copy of these new rules are below.

web-attacks.rules

Posted by Robert A. on 11/05/2001 in Research , Security Tools | Permalink | Reddit

Comments

You can follow this conversation by subscribing to the comment feed for this post.

All Comments are Moderated and will be delayed!

Post a comment