ET POLICY Successful GIOP/IIOP Request Outbound

SID: 2034731Rev: 10 views
History
Sourceet/open
CreatedDecember 15, 2021
UpdatedDecember 15, 2021
Classificationpolicy-violation
alert tcp $EXTERNAL_NET any -> [$HOME_NET,$HTTP_SERVERS] any (msg:"ET POLICY Successful GIOP/IIOP Request Outbound"; flow:established,to_client; flowbits:isset,ET.GIOPsession; stream_size:server,<,50; content:"|47 49 4f 50 01|"; startswith; content:"|01|"; distance:2; within:1; classtype:policy-violation; sid:2034731; rev:1; metadata:attack_target Client_and_Server, created_at 2021_12_15, deployment Perimeter, confidence High, signature_severity Informational, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2021_12_15;)

Metadata

attack targetClient_and_Server
created at2021_12_15
deploymentPerimeter
confidenceHigh
signature severityInformational
tagDescription_Generated_By_Proofpoint_Nexus
updated at2021_12_15

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!