Project

General

Profile

Actions

Feature #2021

closed

doc: sha256 filesum extraction missing in documentation

Added by erik clark about 7 years ago. Updated almost 5 years ago.

Status:
Closed
Priority:
Normal
Target version:
Effort:
low
Difficulty:
low
Label:
Beginner, Outreachy

Description

The following is missing from redmine documentation:

...
The routine is the same -
alert http any any -> any any (msg:"Black list checksum match and
extract SHA256"; filesha256:fileextraction-chksum.list; filestore;
sid:666; rev:1;)
and then the file - fileextraction-chksum.list in your rules directory
will contain the sha256 sums
...

Actions

Also available in: Atom PDF