Dave A-W DaveA-W

## \etc\snort\rules\emerging-threats.rules
# Uncommented rules/*.rules files below are included as DROPs within your snort.rules
# updaterules.sh extracts them selectively from https://rules.emergingthreats.net/open/snort-edge/emerging.rules.tar.gz

# Emerging Threats FAQ https://doc.emergingthreats.net/bin/view/Main/EmergingFAQ

# BotCC: Detect hosts communicating with a known and active Bot or Malware command and control server.
rules/emerging-botcc.portgrouped.rules
rules/emerging-botcc.rules

# CIArmy: Subset of CINS Active Threat Intelligence rules, where an IP's 'Rogue Packet' score is poor or it has tripped a number of trusted alerts around the world.
	# Uncommented rules/*.rules files below are included as DROPs within your snort.rules
	# updaterules.sh extracts them selectively from https://rules.emergingthreats.net/open/snort-edge/emerging.rules.tar.gz

	# Emerging Threats FAQ https://doc.emergingthreats.net/bin/view/Main/EmergingFAQ

	# BotCC: Detect hosts communicating with a known and active Bot or Malware command and control server.
	rules/emerging-botcc.portgrouped.rules
	rules/emerging-botcc.rules

	# CIArmy: Subset of CINS Active Threat Intelligence rules, where an IP's 'Rogue Packet' score is poor or it has tripped a number of trusted alerts around the world.