Most iptables log perl regular expression related news are at:
cipherdyne.org
– cipherdyne.org | System and Network Security
Design of a New 'xbits' Cross-Stream IDS Keyword 23 Aug 2013 | 07:01 am
In the previous blog post a proposal was made for a new Snort and Suricata keyword "xbits" for cross-stream signature matching. This post had little discussion of implementation tradeoffs, and some ha...
Crossing the Streams in IDS Signature Languages 24 Jul 2013 | 07:01 am
This blog post is a proposal for a new SNORT®/Suricata keyword "xbits" that could change how IDS signature developers approach detection of exploits that cross multiple streams. Today in both Snort an...