[EMAIL PROTECTED] wrote: > Would it be possible to write a Snort rule that triggers on possible > creditcard numbers and how would it look like? > > PCI standars says that all creditcard data should be encrypted, It woild be > nice to verify that no card data shows up where it shouldn't... >
http://www.bleedingthreats.net/rules/bleeding-policy.rules There are many examples in this file. Ron Gula, CTO Tenable Network Security http://www.tenablesecurity.com http://www.nessus.org ------------------------------------------------------------------------ Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.coresecurity.com/index.php5?module=Form&action=impact&campaign=intro_sfw to learn more. ------------------------------------------------------------------------
