Ok, so if you have a highly active network pushing many gigs of traffic, then it seems like hash based iocs are not likely to be reliable…
However, ssdeep hashing by bro would likely not be as severely impacted, correct?
Ok, so if you have a highly active network pushing many gigs of traffic, then it seems like hash based iocs are not likely to be reliable…
However, ssdeep hashing by bro would likely not be as severely impacted, correct?