Crowdsourced IDS Rules

If the network traffic generated by a sample matched any of our intrusion detection system rules,  you will see the following section on the file report:

Crowdsourced IDS rules on report

  1. Rule name.
  2. Rule description.
  3. You can click to view the rule details.
  4. You can click to view the context for the matching alert.
  5. You can use VirusTotal Intelligence to search for other matches of the same rule.

If you click on "View rule" you will see the rule details and will have the option to copy the rule to your clipboard.

Crowdsourced IDS rule details

If you click on "View matches" you will see the context for the matching alert.

Crowdsourced IDS rule context

Updated 5 months ago