![[Silicon Defense logo]](../SDlogo.gif)
|
SnortSnarf signature pageSHELLCODE x86 setgid 0SnortSnarf v021111.1 |
| Signature section (91123) | Top 20 source IPs | Top 20 dest IPs |
8 alerts with this signature using input module SnortFileInput, with sources:
Earliest such alert at 23:32:06.425602 on 04/22/2003
Latest such alert at 00:15:28.447014 on 06/11/2003
| SHELLCODE x86 setgid 0 | 6 sources | 7 destinations |
| Priority: 2 | Classification: A system call was detected | |
| [sid:649] [arachNIDS:284] | ||
| Source | # Alerts (sig) | # Alerts (total) | # Dsts (sig) | # Dsts (total) |
| 206.151.167.227 | 2 | 3 | 2 | 3 |
| 216.168.224.69 | 2 | 2 | 1 | 1 |
| 152.163.134.164 | 1 | 1 | 1 | 1 |
| 63.210.68.213 | 1 | 1 | 1 | 1 |
| 63.216.0.251 | 1 | 2 | 1 | 1 |
| 66.187.232.100 | 1 | 1 | 1 | 1 |
| Destinations | # Alerts (sig) | # Alerts (total) | # Srcs (sig) | # Srcs (total) |
| 192.168.1.100 | 2 | 38 | 1 | 8 |
| 192.168.1.101 | 1 | 951 | 1 | 25 |
| 192.168.1.4 | 1 | 69 | 1 | 11 |
| 192.168.1.104 | 1 | 16 | 1 | 8 |
| 192.168.1.7 | 1 | 286 | 1 | 2 |
| 192.168.1.106 | 1 | 5 | 1 | 3 |
| 192.168.1.107 | 1 | 1 | 1 | 1 |