Netgate SG-1000 microFirewall

Author Topic: Bitcoin Mining Detection  (Read 258 times)

0 Members and 1 Guest are viewing this topic.

Offline luke1018

  • Jr. Member
  • **
  • Posts: 35
  • Karma: +1/-0
    • View Profile
Bitcoin Mining Detection
« on: January 28, 2018, 09:55:48 pm »
Hi all, may I know with recent issue with bitcoin mining getting more active, will there be any new patch or new component for Suricata to have this ability to detect these activities?

Seeking your opinion and advise.

Offline NogBadTheBad

  • Sr. Member
  • ****
  • Posts: 502
  • Karma: +45/-0
    • View Profile
Re: Bitcoin Mining Detection
« Reply #1 on: January 29, 2018, 08:44:04 am »
It might just be a matter of enabling the bitcoin rules in snort_app-detect.rules.

Also you might want to blacklist these servers https://github.com/ZeroDot1/CoinBlockerLists/blob/master/MiningServerIPList.txt
« Last Edit: January 29, 2018, 09:21:55 am by NogBadTheBad »