Information in the IDS rule section

The IDS rule section displays information about the alert made by the IDS (Intrusion Detection System) technology as a hex-editor matrix.

The hex-editor or hexadecimal editor is an application for editing data where data is represented as a sequence of bytes.

The upper part of the matrix displays the length of the IDS rule.

The left part of the matrix displays the data of the rule in text format.

The Rule details subsection of the IDS rule section displays the header of the IDS rule and data of the IDS alert in the Suricata format. For example, it can display information about the direction of the traffic (flow), the HTTP request method (http_method), the HTTP header (http_header), the security ID (sid).

See also Viewing alerts Viewing alert details General information about an alert of any type Information in the Object information section Information in the Alert information section Information in the Scan results section Information in the Network event section Scan results in Sandbox IOC scan results Information in the Hosts section Information in the Change log section Sending alert data

Page top