Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

OS classification of signatures

Has anyone gone through and classified the signatures by Operating System (perhaps even patch level). I understand that not all signatures would fall into such a category (Host scanning sigs being an example) but the information is very useful if you can drop alarms that do not apply to your environment.

We are looking to run the gambit and classify the sigs but I am hoping that it has already been done :)

thanks,

Geoff

2 REPLIES
Cisco Employee

Re: OS classification of signatures

IDM 4.0 categorizes signatures by operating system.

You can enable or disable signatures within each

operating system category.

Community Member

Re: OS classification of signatures

How can I dump that information?

Is it accessable with RDEP? If so do you know what the schema would be?

thanks, geoff

99
Views
0
Helpful
2
Replies
CreatePlease to create content