PCAP On threats.

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

PCAP On threats.

L4 Transporter

Can someone explain why PCAPs on threats would be useful or how to download?

3 REPLIES 3

L3 Networker

You may want to check out this thread below for helpful answers. As always, searching before posting reduces clutter on forums. Smiley Wink

What is the reason for packet capture?

A.

(Now shamelessly accepting the next 51 friend requests.)

L4 Transporter

If you are creating custom vulnerability signatures with multiple "or conditions" you like to know which condition triggers the signature.  This helps for tuning and refining the signatures.  This is in addition to those reasons listed in the thread mentioned above.

Phil

L6 Presenter

Pcaps on threats detected can also assist our Content Team determine root cause on possible false positives.

  • 2138 Views
  • 3 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!