Maybe the focus should be moved away from the detection engines
(snort, suricata) and into the rules provider(s)?
http://www.emergingthreats.net/open-source/
On Sun, Oct 6, 2013 at 8:53 AM, Andres Riancho wrote:
> Andri,
>
> Good question, actually I didn't even consider Suricata because I
>
Andri,
Good question, actually I didn't even consider Suricata because I
was unaware of it's existance :( So, after reading the suricata
website for some minutes it seems that their rule format is *very
similar* (the same?) as the one from snort, which could make things
easier if we want to su
