NETBIOS -- Snort has flagged on traffic on the netbios protocol, which is used to share files across a local network.
NETBIOS NT QUERY SECURITY DESC flowbit
This rule does not generate an event. It is used in conjunction with other rules to either reduce the possibility of false positives from occurring or to track the state of a connection. Impact: None. Details: This rule does not generate an event. It is used in conjunction with other rules to either reduce the possibility of false positives from occurring or to track the state of a connection. This rule is used by the sid(s) . Ease of Attack: NA
No information provided
No public information
No known false positives
Cisco Talos
No rule groups
None
No information provided
None