Open Information Security Foundation

02/02/2023

10:14 PM Suricata Bug #5847 (Closed): ppa:oisf/suricata-6.0 broken for arm64

Thank you for the report. Peter Manev

10:03 PM Suricata Bug #5847: ppa:oisf/suricata-6.0 broken for arm64

Can you try again ? It seems some libhtp pkgs did not update.
It should be good now.
We also have "suricata-stable"... Peter Manev

01/24/2023

07:34 AM Suricata Feature #1199: protocol: LDAP support

Among other good reasons to have it - here is also a point for detection
https://thedfirreport.com/2023/01/23/sharef... Peter Manev

01/16/2023

08:37 AM Suricata Feature #5798: New transformation: dropbytes

Yes there is. This can improve detection techniques.
Is it possible to create an MR ? Would love to test it. Peter Manev

01/08/2023

01:51 PM Suricata Bug #5778: ftp fileinfo and extraction seem not to trigger when it should

Please be careful if you extract files - the pcap should contain malware. Peter Manev

01:44 PM Suricata Bug #5778: ftp fileinfo and extraction seem not to trigger when it should

In my previous message ... Peter Manev

01:43 PM Suricata Bug #5778 (New): ftp fileinfo and extraction seem not to trigger when it should

I have tested current master and latest stable 6.0.9.
Please see the attached pcap TLPW.
I may be wrong , but i... Peter Manev

11/25/2022

03:57 PM Suricata Bug #5713: TLSv1 not logged into tls events.

Thank you to the user "woundride" at https://discord.com/channels/911231224448712714/911238451842666546/1044761526109... Peter Manev

03:55 PM Suricata Bug #5713 (New): TLSv1 not logged into tls events.

The attached is a single stream pcap from a malicious C2 beacon occurring multiple times over time.
It has 3whs and ... Peter Manev

11/01/2022

07:54 AM Suricata Bug #5629 (New): windivert compile fails on 7.0.0-beta1

The compile without WinDivert works fine. ... Peter Manev