05-22-2003 06:06 PM - edited 03-09-2019 03:23 AM
Has anyone gone through and classified the signatures by Operating System (perhaps even patch level). I understand that not all signatures would fall into such a category (Host scanning sigs being an example) but the information is very useful if you can drop alarms that do not apply to your environment.
We are looking to run the gambit and classify the sigs but I am hoping that it has already been done :)
thanks,
Geoff
05-23-2003 07:26 AM
IDM 4.0 categorizes signatures by operating system.
You can enable or disable signatures within each
operating system category.
05-23-2003 08:54 AM
How can I dump that information?
Is it accessable with RDEP? If so do you know what the schema would be?
thanks, geoff
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide