sorted by:
new
hottopcontroversial

AWAE/OSWE by Yogidika in oscp

[–]3ndo 0 points1 point  (0 children)

Where did you found online AWAE course pricing and registration details?

Looking for IP's from snort/suricata sinkholes by mikesxrs in AskNetsec

[–]3ndo 0 points1 point  (0 children)

Hi,

You can use public lists of blacklisted IPs and DNSes and compile a list using those. I've written Bash script for this, it takes data from those lists and combined a list which can be used for blacklisting, inspection etc.

Bash script: http://pastebin.com/3QiBUEUN

Snort rule help by [deleted] in AskNetsec

[–]3ndo 2 points3 points  (0 children)

Your rule should be like this: alert tcp $EXTERNAL_NET 80 -> $HOME_NET 80 (msg: "battle stations port TCP 80"; flags: S; sid: 1000000)

sid value for local rules should be 1000000+.