r1 - 26 Jun 2008 - 18:41:50 - MattJonkmanYou are here: TWiki > 
Main Web > UserDocs > AllRulesets > ShadowServerCC
Main Web > UserDocs > AllRulesets > ShadowServerCCShadowserver.org Known Command and Control Rules
This ruleset takes a daily list of the known CnC? Servers as researched by Shadowserver.org and converts them into Snort signatures, Bro Signatures, and Firewall rules. Rules are available here: Shadowserver Botnet Command and Control Server Rules (ShadowServerCC): Sid Range info: 2404000-2404999 Shadowserver.org Bot C&C List — Updated Daily 2405000-2405999 Shadowserver.org Bot C&C List with fwsam Drop Statements– Updated Daily Firewall Rules http://www.emergingthreats.net/fwrules
Main Web
Create New Topic
Index
Search
Changes
Preferences- User Reference
- ATasteOfTWiki
- TextFormattingRules
- Signature Reference
- WebRss Feed
- EmergingFAQ
 |
|
Copyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Send feedback