Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Signatures
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Snort-sigs] quick question on byte_test bitwise operator

from [Brian Caswell] Network Security [Permanent Link]
Subject: Re: [Snort-sigs] quick question on byte_test bitwise operator
Date: Tue, 23 Jan 2007 11:05:12 -0500 
On Jan 23, 2007, at 4:04 AM, êëì01 wrote:> Snort manual says I can use 
&(AND), !(NOT).>> It also says I can use OR operator which is not clearly 
printed.>> Some says that it supports XOR operator, yet it is not documented.
The available operators are:
<, =, >, &, and ^.   All of the operators can also be used as the  opposite.  
For example, !>, would equate to not greater than.
The operators work exactly as they would if used them in C.
Basically:
if ((packet_value ^ rule_value)) > 0) {     success = 1;}
Brian-------------------------------------------------------------------------Take
 Surveys. Earn Cash. Influence the Future of ITJoin SourceForge.net's Techsay 
panel and you'll get the chance to share youropinions on IT & business topics 
through brief surveys - and earn 
cashhttp://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV_______________________________________________Snort-sigs
 mailing 
listSnort-sigs@lists.sourceforge.nethttps://lists.sourceforge.net/lists/listinfo/snort-sigs
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Snort-sigs] quick question on byte_test bitwise operator, 김동욱01
Next by Date:  [Snort-sigs] Bleeding Edge Threats Daily Signature Changes, bleeding
Previous by Thread:  [Snort-sigs] quick question on byte_test bitwise operator, 김동욱01
Indexes:  [Date] [Thread] [Top] [All Lists]