[Bro] how can detect attack from pcap by bro
bz Os
ossamabzos at gmail.com
Fri May 18 19:16:18 PDT 2018
hello evry one i
I tested bro ids with tcpdump darpa 1999 I imported all the script for the
detection,as results i had nodetection all results are about protocol
detector ,i tested also suricata with the same tcpdump as results suricata
detect large number of attack ,
i want to know how can i use bro for detect attack in the tcp dump to
compare the number of attack detected against suricata
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.ICSI.Berkeley.EDU/pipermail/bro/attachments/20180519/bd8ee5a4/attachment.html
More information about the Bro
mailing list