Network Security: Detailed info on [Snort-sigs] JBoss jmx-console sig

Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.

Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.

Network Security Snort-Signatures

Subject:	[Snort-sigs] JBoss jmx-console sig
Date:	Fri, 2 Jun 2006 18:44:12 -0400

Subject:

[Snort-sigs] JBoss jmx-console sig

Date:

Fri, 2 Jun 2006 18:44:12 -0400

I find this signature fairly useful, as JBoss is quite popular and by default the jmx-console is unprotected. Complete exploitation of the app or underlying OS is only limited by what beans are exposed via JBoss and the attacker's creativity. Enjoy: alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"JBoss jmx-console access"; flow:to_server,established; uricontent:"/jmx-console"; sid:12345678;) -jon _______________________________________________ Snort-sigs mailing list Snort-sigs@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/snort-sigs

<Prev in Thread]	Current Thread	[Next in Thread>
[Snort-sigs] JBoss jmx-console sig, Jon Hart <=

<Prev in Thread]

Current Thread

[Next in Thread>

Previous by Date:	[Snort-sigs] Moving on but not saying good-bye, Jennifer Steffens
Next by Date:	[Snort-sigs] JBoss RMI download service directory listing sig, Jon Hart
Previous by Thread:	[Snort-sigs] Moving on but not saying good-bye, Jennifer Steffens
Next by Thread:	[Snort-sigs] JBoss RMI download service directory listing sig, Jon Hart
Indexes:	[Date] [Thread] [Top] [All Lists]

Previous by Date:

[Snort-sigs] Moving on but not saying good-bye, Jennifer Steffens

Next by Date:

[Snort-sigs] JBoss RMI download service directory listing sig, Jon Hart

Previous by Thread:

[Snort-sigs] Moving on but not saying good-bye, Jennifer Steffens

Next by Thread:

[Snort-sigs] JBoss RMI download service directory listing sig, Jon Hart

Indexes:

[Date] [Thread] [Top] [All Lists]