Snort Search


1-39953 - PROTOCOL-DNS PowerDNS TSIG query denial of service attempt

Rule

1-41788 - MALWARE-CNC Win.Trojan.PowerMacro DNS query response

Rule

1-41789 - MALWARE-CNC Win.Trojan.PowerMacro DNS query response

Rule

1-51000 - PROTOCOL-DNS PowerDNS Recursor query denial of service attempt

Rule

Talos Rules 2016-03-17 - This release adds and modifies rules in several categories.

Advisory

Talos Rules 2016-03-17 - This release adds and modifies rules in several categories.

Advisory

1-34497 - APP-DETECT Your-Freedom DNS tunneling query response attempt

Rule

1-39948 - PROTOCOL-DNS PowerDNS TCP TKEY query denial of service attempt

Rule

1-39949 - PROTOCOL-DNS PowerDNS TCP TKEY query denial of service attempt

Rule

1-39950 - PROTOCOL-DNS PowerDNS TCP TSIG query denial of service attempt

Rule

1-39951 - PROTOCOL-DNS PowerDNS TCP TSIG query denial of service attempt

Rule

1-41787 - MALWARE-CNC Win.Trojan.PowerMacro TCP DNS query response

Rule

1-26266 - MALWARE-CNC Win.Trojan.Zeus v3 DGA DNS query detected

Rule

1-26267 - MALWARE-CNC Win.Trojan.Zeus v3 DGA DNS query detected

Rule

1-26268 - MALWARE-CNC Win.Trojan.Zeus v3 DGA DNS query detected

Rule

1-26269 - MALWARE-CNC Win.Trojan.Zeus v3 DGA DNS query detected

Rule

1-26270 - MALWARE-CNC Win.Trojan.Zeus v3 DGA DNS query detected

Rule

1-26271 - MALWARE-CNC Win.Trojan.Zeus v3 DGA DNS query detected

Rule

1-494 - INDICATOR-COMPROMISE command completed

Rule

1-30065 - INDICATOR-COMPROMISE ZenCart compromise attempt detected

Rule

1-1201 - INDICATOR-COMPROMISE 403 Forbidden

Rule

Talos Rules 2017-10-19 - This release adds and modifies rules in several categories.

Advisory

Talos Rules 2017-10-19 - This release adds and modifies rules in several categories.

Advisory

Talos Rules 2017-10-19 - This release adds and modifies rules in several categories.

Advisory

1-495 - INDICATOR-COMPROMISE command error

Rule

1-23017 - INDICATOR-COMPROMISE c99shell comment

Rule

3-35942 - PROTOCOL-DNS ISC BIND TKEY query processing denial of service attempt

Rule

3-35943 - PROTOCOL-DNS ISC BIND TKEY query processing denial of service attempt

Rule

1-254 - PROTOCOL-DNS SPOOF query response with TTL of 1 min. and no authority

Rule

1-17294 - OS-WINDOWS Microsoft Windows NAT Helper DNS query denial of service attempt

Rule