Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Snort-Signatures
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[Snort-sigs] Bleedingsnort.com Daily Update

from [bleeding] Network Security [Permanent Link]
Subject: [Snort-sigs] Bleedingsnort.com Daily Update
Date: Mon, 2 May 2005 20:00:07 -0500 (EST) 

[***] Results from Oinkmaster started Mon May  2 20:00:06 2005 [***]

[+++]          Added rules:          [+++]

 2001898 - BLEEDING-EDGE POLICY eBay Bid Placed (bleeding-policy.rules)
 2001899 - BLEEDING-EDGE Botnet HTTP Botnet reg (bleeding-virus.rules)
 2001900 - BLEEDING-EDGE BwB Botnet Checkin (bleeding-virus.rules)
 2001901 - BLEEDING-EDGE TROJAN Possible Bobax trojan infection 
(bleeding-virus.rules)
 2001902 - BLEEDING-EDGE WORM Sober.O Attachment Outbound (bleeding-virus.rules)
 2001903 - BLEEDING-EDGE WORM Sober.O Attachment Inbound (bleeding-virus.rules)
 2001904 - BLEEDING-EDGE Behavioral Unusually fast Telnet Connections, 
Potential Scan or Brute Force (bleeding-scan.rules)


[///]     Modified active rules:     [///]

 2000011 - BLEEDING-EDGE DOS Catalyst memory leak attack (bleeding-dos.rules)
 2001278 - BLEEDING-EDGE VIRUS W32.Novarg.A SCO DOS (bleeding-virus.rules)
 2001342 - BLEEDING-EDGE WEB-IIS ASP.net Auth Bypass / Canonicalization 
(bleeding-web.rules)
 2001343 - BLEEDING-EDGE WEB-IIS ASP.net Auth Bypass / Canonicalization % 5 C 
(bleeding-web.rules)
 2001529 - BLEEDING-EDGE MALWARE Casalemedia Access, Likely Spyware 
(bleeding-malware.rules)
 2001531 - BLEEDING-EDGE MALWARE C4tdoanload.com Access, Likely Spyware 
(bleeding-malware.rules)
 2001532 - BLEEDING-EDGE Malware Searchmiracle.com Access, Likely Spyware 
(bleeding-malware.rules)
 2001537 - BLEEDING-EDGE Malware Spyspotter.com Access, Likely Spyware 
(bleeding-malware.rules)
 2001539 - BLEEDING-EDGE Malware Spyspotter.com Access, Likely Spyware 
(bleeding-malware.rules)
 2001621 - BLEEDING-EDGE Exploit Suspected PHP Injection Attack 
(bleeding-web.rules)
 2001800 - BLEEDING-EDGE Unknown Yahoo Messenger Worm URL access 
(bleeding-virus.rules)
 2001810 - BLEEDING-EDGE EXPLOIT WEB PHP remote file include exploit attempt 
(bleeding-web.rules)


[///]    Modified inactive rules:    [///]

 2001527 - BLEEDING-EDGE MALWARE Casalemedia Access, Likely Spyware 
(bleeding-malware.rules)


[+++]      Added non-rule lines:     [+++]

     -> Added to bleeding-policy.rules (1):
        #From Charles Lacroix

     -> Added to bleeding-sid-msg.map (7):
        2001898 || BLEEDING-EDGE POLICY eBay Bid Placed
        2001899 || BLEEDING-EDGE Botnet HTTP Botnet reg
        2001900 || BLEEDING-EDGE BwB Botnet Checkin
        2001901 || BLEEDING-EDGE TROJAN Possible Bobax trojan infection || 
url,www.lurhq.com/bobax.html
        2001902 || BLEEDING-EDGE WORM Sober.O Attachment Outbound
        2001903 || BLEEDING-EDGE WORM Sober.O Attachment Inbound
        2001904 || BLEEDING-EDGE Behavioral Unusually fast Telnet Connections, 
Potential Scan or Brute Force

     -> Added to bleeding-virus.rules (4):
        #Sober-O by Evgeny Pinchuk 5/2/05
        #from private list
        #5/2/05 aim distributed in some cases, Matt Jonkman
        #Joe Stewart from Lurhq



-------------------------------------------------------
This SF.Net email is sponsored by: NEC IT Guy Games.
Get your fingers limbered up and give it your best shot. 4 great events, 4
opportunities to win big! Highest score wins.NEC IT Guy Games. Play to
win an NEC 61 plasma display. Visit http://www.necitguy.com/?r=20
_______________________________________________
Snort-sigs mailing list
Snort-sigs@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/snort-sigs
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Next by Date:  [Snort-sigs] Bug in current bleeding-all.rules, Erik de Castro Lopo
Next by Thread:  [Snort-sigs] Bleedingsnort.com Daily Update, bleeding
Indexes:  [Date] [Thread] [Top] [All Lists]