Snort rule update for Sept. 21, 2021
Cisco Talos released the latest rule update for SNORTⓇ Tuesday
morning.
We neglected to post about this Thursday, but there was also
another rule update that Talos released late last week.
Here's a full breakdown of today's rule update:
.tg {border-collapse:collapse;border-spacing:0;} .tg
td{border-color:black;border-style:solid;border-width:1px;font-family:Arial,
sans-serif;font-size:14px; overflow:hidden;padding:10px
5px;word-break:normal;} .tg
th{border-color:black;border-style:solid;border-width:1px;font-family:Arial,
sans-serif;font-size:14px;
font-weight:normal;overflow:hidden;padding:10px
5px;word-break:normal;} .tg
.tg-6p4y{border-color:#efefef;font-weight:bold;text-align:left;vertical-align:top}
.tg
.tg-li6d{border-color:#efefef;text-align:center;vertical-align:top}
| Shared object rules |
Modified shared object rules |
New rules |
Modified rules |
| 0 |
1 |
14 |
1 |
There were no changes made
to the snort.conf in this
release.
Talos' rule release:
Talos has added and modified multiple rules in the
indicator-shellcode, malware-cnc, malware-other and server-webapp
rule sets to provide coverage for emerging threats from these
technologies.
You can subscribe to Talos' newest rule detection
functionality for as low as $29 a year with a personal account. Be
sure and see our business pricing as well here. The Snort 3 release is also here after years of
development and improvements. Upgrade here.
