Packages

blacklist

By initconf

package to manage blacklisted IP address ysing bro

CVE-2017-5638_struts

By initconf

package to detect CVE-2017-5638 struts attack

ftp-bruteforce

By initconf

ftp-bruteforce

phish-analysis

By initconf

Suite of smtp related policies includes extracting and logging URLs from emails and various smtp anomaly detection heuristics to help flag phishing emails

scan-NG

By initconf

scan detection in 2.x world. Forward porting of bro-1.5.3 scan.bro accompanied with new heuristics and quicker detections

smtp-url-analysis

By initconf

Suite of smtp related policies includes extracting and logging URLs from emails and various smtp anomaly detection heuristics to help flag phishing emails

vnc-scanner

By initconf

Simple policy to detect VNC (RFB) scanners based on src->dst connection counts

Page 1 of 1, showing 7 record(s) out of 7 total