Actions
Bug #4312
closeddcerpc: no alert triggered with dce opnum in 6.0
Affected Versions:
Effort:
Difficulty:
Label:
Description
For the attached suricata-verify test, alert is not triggered for rules in the file named ".broken.rules". The only diff this file has from the other rule file is an opnum to match against.
via Jeff Lucovsky via Corelight researcher
Files
Actions