Interested in learning how to write signatures but need some help getting started? Check out our Traffic Analysis and Suricata Signature Development Lab given at BSidesSLC 2022.
The lab walks through the process of building a signature from scratch to detect CnC exfiltration. Download the VM, follow along and learn how to use Dalton to test your signatures!
VM, Slides, Recording: BSidesSLC 2022 - Google Drive