SID 1:16538

Report a false positive

Rule Category

NETBIOS -- Snort has flagged on traffic on the netbios protocol, which is used to share files across a local network.

Alert Message

NETBIOS NT QUERY SECURITY DESC flowbit

Rule Explanation

This rule does not generate an event. It is used in conjunction with other rules to either reduce the possibility of false positives from occurring or to track the state of a connection. Impact: None. Details: This rule does not generate an event. It is used in conjunction with other rules to either reduce the possibility of false positives from occurring or to track the state of a connection. This rule is used by the sid(s) . Ease of Attack: NA

What To Look For

No information provided

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos

Rule Groups

No rule groups

CVE

None

Rule Vulnerability

No information provided

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.

None