[Bro] Emerging Threats signatures on Bro ids ?
Seth Hall
seth at icir.org
Fri Aug 10 18:18:34 PDT 2012
On Aug 10, 2012, at 7:48 PM, Vlad Grigorescu <vladg at cmu.edu> wrote:
> tl;dr: I think it'd be very useful to have this data, but I don't think anyone should sink too much time into it until the intel framework comes out.
You hit that perfectly. I'm working hard on getting the intelligence framework ready for some people to start testing soon hopefully. It's in memory tuning now to reduce worker memory usage on clusters.
.Seth
--
Seth Hall
International Computer Science Institute
(Bro) because everyone has a network
http://www.bro-ids.org/
More information about the Bro
mailing list