Documents

The following setup guides have been contributed by members of the Snort Community for your use. Comments and questions on these documents should be submitted directly to the author by clicking on their names below.


Latest rule documents - Search
1:64452
This rule looks for a reference to an external resource known to bypass the MapUrlToZone security feature.
1:64451
This rule alerts on Use After Free attempts against vulnerable versions of Microsoft Windows to achieve Elevation of Privilege.
1:64450
This rule alerts on Use After Free attempts against vulnerable versions of Microsoft Windows to achieve Elevation of Privilege.
1:64449
This rule looks for a maliciously crafted DLL that can be sideloaded into the Microsoft Search Service to cause an escalation of privilege in the system
1:64448
This rule looks for a maliciously crafted DLL that can be sideloaded into the Microsoft Search Service to cause an escalation of privilege in the system
1:64447
This rule looks for Kerberos network traffic that is intended to bypass CredentialGuard