[Snort-users] Trojans and snort
sokhnstephanie at ...125...
Mon Apr 21 10:28:15 EDT 2014
hello, I've downloaded a trojan on ubuntu 12.04 and accessed its shell from backtrack using metasploit. The thing is that all the alerts received from snort were about BAD-TRAFFIC loopback traffic and nothing more.Is there something wrong with my configuration? shouldn't snort detect this kind of exploits?Is there any additional predefined rules for snort IPS that drop packets ?
would appreciate any kind of help.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Snort-users