sid: 2001219 signature: "ET SCAN Potential SSH Scan" [ "http://en.wikipedia.org/wiki/Brute_force_attack", "http://doc.emergingthreats.net/2001219" ]

sid: 2002910 signature: "ET SCAN Potential VNC Scan 5800-5820" [ "http://doc.emergingthreats.net/2002910" ]

sid: 2002911 signature: "ET SCAN Potential VNC Scan 5900-5920" [ "http://doc.emergingthreats.net/2002911" ]

sid: 2008578 signature: "ET SCAN Sipvicious Scan" [ "http://blog.sipvicious.org", "http://doc.emergingthreats.net/2008578" ]

sid: 2010935 signature: "ET SCAN Suspicious inbound to MSSQL port 1433" [ "http://doc.emergingthreats.net/2010935" ]

sid: 2010936 signature: "ET SCAN Suspicious inbound to Oracle SQL port 1521" [ "http://doc.emergingthreats.net/2010936" ]

sid: 2010937 signature: "ET SCAN Suspicious inbound to mySQL port 3306" [ "http://doc.emergingthreats.net/2010937" ]

sid: 2010939 signature: "ET SCAN Suspicious inbound to PostgreSQL port 5432" [ "http://doc.emergingthreats.net/2010939" ]

sid: 2011716 signature: "ET SCAN Sipvicious User-Agent Detected (friendly-scanner)" [ "http://code.google.com/p/sipvicious/", "http://blog.sipvicious.org/", "http://doc.emergingthreats.net/2011716" ]

sid: 2013504 signature: "ET POLICY GNU/Linux APT User-Agent Outbound likely related to package management" [ "http://help.ubuntu.com/community/AptGet/Howto" ]

sid: 2101411 signature: "GPL SNMP public access udp" [ "http://www.securityfocus.com/bid/2112", "http://www.securityfocus.com/bid/4088", "http://www.securityfocus.com/bid/4089", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=1999-0517", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=2002-0012", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=2002-0013" ]

sid: 2402000 signature: "ET DROP Dshield Block Listed Source group 1" [ "http://feeds.dshield.org/block.txt" ]

sid: 2402001 signature: "ET DROP Dshield Block Listed Source group 1" null

sid: 2403300 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 1" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403304 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 3" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403306 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 4" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403308 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 5" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403334 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 18" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403336 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 19" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403346 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 24" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403347 signature: "ET CINS Active Threat Intelligence Poor Reputation IP UDP group 24" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403362 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 32" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403368 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 35" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403370 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 36" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403386 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 44" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403388 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 45" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403396 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 49" [ "http://www.cinsscore.com", "http://www.networkcloaking.com/cins" ]

sid: 2403410 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 56" null

sid: 2403412 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 57" null

sid: 2403422 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 62" null

sid: 2403432 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 67" null

sid: 2403433 signature: "ET CINS Active Threat Intelligence Poor Reputation IP UDP group 67" null

sid: 2403444 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 73" null

sid: 2403450 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 76" null

sid: 2403451 signature: "ET CINS Active Threat Intelligence Poor Reputation IP UDP group 76" null

sid: 2403452 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 77" null

sid: 2403456 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 79" null

sid: 2403470 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 86" null

sid: 2403472 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 87" null

sid: 2403477 signature: "ET CINS Active Threat Intelligence Poor Reputation IP UDP group 89" null

sid: 2403482 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 92" null

sid: 2403484 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 93" null

sid: 2403486 signature: "ET CINS Active Threat Intelligence Poor Reputation IP TCP group 94" null

sid: 2500090 signature: "ET COMPROMISED Known Compromised or Hostile Host Traffic TCP group 46" null

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

references.md

references.md

Files

references.md

Latest commit

History

references.md

File metadata and controls