SNORT Rules ‘classtype’ Enumeration

Extracted from rule set “Snort v2.9, snortrules-snapshot-29110.tar.gz”

classtype:misc-activity
classtype:policy-violation
classtype:web-application-attack
classtype:trojan-activity
classtype:attempted-admin
classtype:protocol-command-decode
classtype:bad-unknown
classtype:attempted-recon
classtype:web-application-activity
classtype:successful-recon-limited
classtype:network-scan
classtype:attempted-user
classtype:attempted-dos
classtype:misc-attack
classtype:denial-of-service
classtype:shellcode-detect
classtype:unsuccessful-user
classtype:unknown
classtype:non-standard-protocol
classtype:rpc-portmap-decode
classtype:suspicious-filename-detect
classtype:unusual-client-port-connection
classtype:not-suspicious
classtype:successful-user
classtype:string-detect
classtype:successful-admin
classtype:system-call-detect
classtype:suspicious-login
classtype:default-login-attempt

(Python script)