111-7.txt

来自「snort入侵检测规则文件2.4 Snort是众所周知的网络入侵检测工具」· 文本代码 · 共 59 行

TXT

59 行

Rule: --Sid: 111-7-- Summary: This event is generated when the pre-processor stream4detects network traffic that may constitute an attack.-- Impact: This may indicate scanning activity.--Detailed Information:The pre-processor stream4 has detected network traffic that may indicatea scan is in progress. That is, packets with the SYN, ACK, URG andPUSH flags set have been detected.--Affected Systems:	All systems--Attack Scenarios: An attacker may utilize scanning techniques to determine possible pointsof exploitation against a host.-- Ease of Attack: Simple. Many scanning tools exist.-- False Positives:None Known.--False Negatives:None Known.-- Corrective Action:Check the target host for signs of compromise.Ensure the system is up to date with any appropriate vendor supplied patches.--Contributors:Martin Roesch <roesch@sourcefire.com>Sourcefire Vulnerability Research TeamNigel Houghton <nigel.houghton@sourcefire.com>-- Additional References:--

111-7.txt - 源码说明

本页面展示了「snort入侵检测规则文件2.4 Snort是众所周知的网络入侵检测工具」中的 111-7.txt 源码文件，采用文本编程语言编写，共 59 行代码。您可以在线阅读完整代码内容，也可以返回资源详情页下载完整源码包进行本地学习和开发。

虫虫下载站收录了大量与snort相关的技术资源，包括源代码、技术文档、电路图等，是电子工程师和嵌入式开发者的专业学习平台。

⌨️ 快捷键说明

复制代码Ctrl + C

搜索代码Ctrl + F

全屏模式F11

增大字号Ctrl + =

减小字号Ctrl + -

显示快捷键?