project 4IDS-SNORT.docx - Project 4 IDS SNORT 1 ICMP o itype 3 No issues 2 TCP o http 80[1:1:0 Alert SSH with FFFFFFF[Priority 0 05\/04-09:53:52.800369

project 4IDS-SNORT.docx - Project 4 IDS SNORT 1 ICMP o...

This preview shows page 1 - 2 out of 2 pages.

Project 4 IDS -- SNORT 1. ICMP o itype 3 No issues 2. TCP o http 80 [**] [1:1:0] Alert SSH with FFFFFFF [**] [Priority: 0] 05/04-09:53:52.800369 00:50:04:5B:64:5B -> 00:10:4B:E2:65:8E type:0x800 len:0x23B 192.168.1.5:42069 -> 192.168.10.2:22 TCP TTL:254 TOS:0x0 ID:83 IpLen:20 DgmLen:557 DF ****PR** Seq: 0x201F Ack: 0x3992 Win: 0x200 TcpLen: 20 o SSH 22 [**] [1:1:0] Alert HTTP with FAFAFAF [**] [Priority: 0] 05/04-09:53:52.784584 00:50:04:5B:64:5B -> 00:10:4B:E2:65:8E type:0x800 len:0x5C 192.168.1.5:42069 -> 192.168.10.2:80 TCP TTL:254 TOS:0x0 ID:666 IpLen:20 DgmLen:78 DF ***A**** Seq: 0x29A Ack: 0x29A Win: 0x29A TcpLen: 20 o DNS 53 [**] [1:1:0] Alert HTTP with HTTPPPP [**] [Priority: 0] 05/04-09:53:52.790472 00:50:04:5B:64:5B -> 00:10:4B:E2:65:8E type:0x800 len:0x52 192.168.1.5:32569 -> 192.168.10.2:53 TCP TTL:254 TOS:0x0 ID:420 IpLen:20 DgmLen:68 DF ******** Seq: 0x1A4 Ack: 0x1A4 Win: 0x200 TcpLen: 20 [**] [1:1:0] Alert HTTP with LKJGDEW [**] [Priority: 0] 05/04-09:53:52.660053 00:50:04:5B:64:5B -> 00:10:4B:E2:65:8E type:0x800 len:0x52 192.168.1.5:32569 -> 192.168.10.2:53 TCP TTL:254 TOS:0x0 ID:420 IpLen:20 DgmLen:68 DF
Image of page 1
Image of page 2

You've reached the end of your free preview.

Want to read both pages?

  • Spring '16
  • Xia
  • len, User Datagram Protocol, 255.255.255.255, 192.168.1.5, TCP TTL, 192.168.10.2

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture

  • Left Quote Icon

    Student Picture