importing bro rules

Oguz_Yarimtepe · June 3, 2013, 7:02pm

Hi,

Is there any way to use bro rules at an external program. I want to detect raw traffic anomalies/attacks and instead of installing Bro i wonder whether i can just use the rules and parse them to gather some information. Maybe there exists an already written solution?

Regards.

Seth_Hall3 · June 4, 2013, 2:11am

I believe you are misunderstanding Bro. Please give it a try instead of trying to avoid it.

.Seth

Topic		Replies	Views
new to bro, a few questions Zeek	2	76	May 6, 2022
Bro as an Anomaly Detector. Zeek	1	66	May 6, 2022
RE: [Bro] Off-line analysis Zeek	1	71	May 6, 2022
Bro: a question regarding type Zeek	1	75	May 6, 2022
help to understand more about bro Zeek	1	58	May 6, 2022

importing bro rules

Related Topics