🐾 - ℹ SentinelOne 🇮🇱 🇺🇸 Endpoint agent 🛡 for 🪟 Windows 10

SID: 3301123Rev: 243 views
Sourcepawpatrules
CreatedJanuary 22, 2024
UpdatedJanuary 25, 2024
Classificationmisc-activity
alert tls $HOME_NET any -> $EXTERNAL_NET any (msg:"🐾 - ℹ SentinelOne 🇮🇱 🇺🇸 Endpoint agent 🛡 for 🪟 Windows 10"; flow:to_server, stateless; threshold:type limit, track by_src,count 1, seconds 86400; ssl_version:tls1.2; ja3.hash; content:"3b5074b1b5d032e5620f69f9f700ff0e"; fast_pattern; tls_sni; content:"sentinelone.net"; nocase; endswith; reference:url,https://www.sentinelone.com; metadata:created_at 2024_01_22, updated_at 2024_01_25; sid:3301123; rev:2; classtype:misc-activity;)

References

urlhttps://www.sentinelone.com

Metadata

created at2024_01_22
updated at2024_01_25

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!