OS-WINDOWS -- Snort has detected traffic targeting vulnerabilities in a Windows-based operating system. This does not include browser traffic or other software on the OS, but attacks against the OS itself.
OS-WINDOWS Microsoft Windows digital signature spoofing attempt
This rule looks crafted files that can bypass Microsoft Windows digital signature checks.
This rule fires on attempts to exploit a digital signature spoofing vulnerability in Microsoft Windows.
No public information
No known false positives
Cisco Talos Intelligence Group
No rule groups