[Bro] Emerging Threats signatures on Bro ids ?

Seth Hall seth at icir.org
Fri Aug 10 18:18:34 PDT 2012

On Aug 10, 2012, at 7:48 PM, Vlad Grigorescu <vladg at cmu.edu> wrote:

> tl;dr: I think it'd be very useful to have this data, but I don't think anyone should sink too much time into it until the intel framework comes out.

You hit that perfectly.  I'm working hard on getting the intelligence framework ready for some people to start testing soon hopefully.  It's in memory tuning now to reduce worker memory usage on clusters.


Seth Hall
International Computer Science Institute
(Bro) because everyone has a network

More information about the Bro mailing list