EXPLOIT-KIT -- Snort has alerted on traffic that is typical of known exploit kits. Exploit kits are pre-packaged sets of code and malware geared toward finding and taking advantage of common browser vulnerabilities. They are Javascript code that provides an entry point to a system to initiate the next state. Snort's rules look for known exploit kit nomenclature, information sent back exposing sensitive infrastructure, attempts to reach a certain file, etc. Rules try to identify the exact kit being used based on actor-group patterns, such as favored target website, malware types, and code similarities.
EXPLOIT-KIT Multiple exploit kit Silverlight exploit download
This event is generated when there are multiple silverlight exploits downloaded that are associated with an exploit kit Impact: A Network Trojan was detected Details: Ease of Attack:
No information provided
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups
CVE-2013-0074 |
Loading description
|
CVE-2013-0634 |
Loading description
|
CVE-2013-3896 |
Loading description
|