[Bro] importing bro rules

Oğuz Yarımtepe oguzyarimtepe at gmail.com
Mon Jun 3 12:02:37 PDT 2013


Is there any way to use bro rules at an external program. I want to detect
raw traffic anomalies/attacks and instead of installing Bro i wonder
whether i can just use the rules and parse them to gather some information.
Maybe there exists an already written solution?


Oğuz Yarımtepe
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20130603/93cfbd01/attachment.html 

More information about the Bro mailing list