![[Silicon Defense logo]](../SDlogo.gif)
|
SnortSnarf signature pageSHELLCODE x86 setuid 0SnortSnarf v021111.1 |
| Signature section (91123) | Top 20 source IPs | Top 20 dest IPs |
9 alerts with this signature using input module SnortFileInput, with sources:
Earliest such alert at 18:46:56.379106 on 04/24/2003
Latest such alert at 14:50:23.831723 on 06/10/2003
| SHELLCODE x86 setuid 0 | 7 sources | 6 destinations |
| Priority: 2 | Classification: A system call was detected | |
| [sid:650] [arachNIDS:436] | ||
| Source | # Alerts (sig) | # Alerts (total) | # Dsts (sig) | # Dsts (total) |
| 216.65.98.13 | 2 | 23 | 1 | 1 |
| 128.242.172.250 | 2 | 70 | 1 | 1 |
| 192.234.167.242 | 1 | 1 | 1 | 1 |
| 63.240.15.136 | 1 | 1 | 1 | 1 |
| 63.215.124.46 | 1 | 1 | 1 | 1 |
| 172.149.194.108 | 1 | 1 | 1 | 1 |
| 166.90.208.152 | 1 | 3 | 1 | 1 |
| Destinations | # Alerts (sig) | # Alerts (total) | # Srcs (sig) | # Srcs (total) |
| 192.168.1.101 | 4 | 951 | 2 | 25 |
| 192.168.1.103 | 1 | 58 | 1 | 8 |
| 192.168.1.6 | 1 | 7770 | 1 | 624 |
| 192.168.1.105 | 1 | 29 | 1 | 9 |
| 192.168.1.106 | 1 | 5 | 1 | 3 |
| 192.168.1.91 | 1 | 155 | 1 | 2 |