No subject


Thu Nov 23 16:36:19 EST 2017


alert tcp $EXTERNAL_NET any -> $HOME_NET 27665 (msg:"DDOS Trin00 Attacker to
Mas
ter default mdie password";flags: A+; content:"killme";
classtype:bad-unknown; s
id:235; rev:1;)
alert icmp $EXTERNAL_NET any -> $HOME_NET any (msg:"DDOS Stacheldraht
client-che
ck-gag"; content: "|67 65 73 75 6E 64 68 65 69 74 21|"; itype: 0; icmp_id:
668; 
reference:arachnids,194; classtype:attempted-dos; sid:236; rev:1;)
alert udp $EXTERNAL_NET any -> $HOME_NET 27444 (msg:"DDOS
Trin00:MastertoDaemon(
defaultpassdetected!)"; content:"l44adsl"; reference:arachnids,197;
classtype:at
tempted-dos; sid:237; rev:1;)


Thanks in advance,

gary crowell




More information about the Snort-users mailing list