Snort Rules for Detecting 'device', 'watt', and 'horsepower' Keywords
alert tcp any any -> any any (content:"device"; nocase; msg:"Detected device keyword"; sid:100001;) alert tcp any any -> any any (content:"watt"; nocase; msg:"Detected watt keyword"; sid:100002;) alert tcp any any -> any any (content:"horsepower"; nocase; msg:"Detected horsepower keyword"; sid:100003;)
原文地址: https://www.cveoy.top/t/topic/p9P5 著作权归作者所有。请勿转载和采集!