Versions (3)
Version DetailsCurrent
Rev: 6 • Oct 13, 2010, 12:00 PMET DNS DNS Lookup for localhost.DOMAIN.TLD
alert udp ![$SMTP_SERVERS,$DNS_SERVERS] any -> $DNS_SERVERS 53 (msg:"ET DNS DNS Lookup for localhost.DOMAIN.TLD"; content:"|01|"; offset:2; depth:1; content:"|00 01 00 00 00 00 00|"; distance:1; within:7; content:"|09|localhost"; fast_pattern; nocase; classtype:bad-unknown; sid:2011802; rev:6; metadata:created_at 2010_10_13, confidence Medium, signature_severity Major, updated_at 2019_09_03;)
Oct 13, 2010, 12:00 PM
Sep 3, 2019, 12:00 PM
Sep 21, 2024, 3:00 AM
May 30, 2025, 12:04 AM
rules/emerging-dns.rules