[Silicon Defense logo]

SnortSnarf alert page

Destination: 192.168.0.6

SnortSnarf v021111.1

Signature section (188)Top 20 source IPsTop 20 dest IPs

4 such alerts found using input module SnortFileInput, with sources:
Earliest: 17:56:38.404570 on 07/07/2018
Latest: 17:56:41.413578 on 07/07/2018

1 different signatures are present for 192.168.0.6 as a destination

There are 1 distinct source IPs in the alerts of the type on this page.

192.168.0.6 Whois lookup at: ARIN RIPE APNIC Geektools
DNS lookup at: Amenesi TRIUMF Princeton
More lookup links: Dshield Sam Spade
See also 192.168.0.6 as an alert source [4 alerts]


[**] [1:777:0] ICMP traffic [**]
[Priority: 0]
07/07-17:56:38.404570 192.168.0.37 -> 192.168.0.6
ICMP TTL:64 TOS:0x0 ID:10826 IpLen:20 DgmLen:60
Type:0 Code:0 ID:1 Seq:1 ECHO REPLY
[**] [1:777:0] ICMP traffic [**]
[Priority: 0]
07/07-17:56:39.407460 192.168.0.37 -> 192.168.0.6
ICMP TTL:64 TOS:0x0 ID:10827 IpLen:20 DgmLen:60
Type:0 Code:0 ID:1 Seq:2 ECHO REPLY
[**] [1:777:0] ICMP traffic [**]
[Priority: 0]
07/07-17:56:40.410540 192.168.0.37 -> 192.168.0.6
ICMP TTL:64 TOS:0x0 ID:10828 IpLen:20 DgmLen:60
Type:0 Code:0 ID:1 Seq:3 ECHO REPLY
[**] [1:777:0] ICMP traffic [**]
[Priority: 0]
07/07-17:56:41.413578 192.168.0.37 -> 192.168.0.6
ICMP TTL:64 TOS:0x0 ID:10829 IpLen:20 DgmLen:60
Type:0 Code:0 ID:1 Seq:4 ECHO REPLY

SnortSnarf brought to you courtesy of Silicon Defense
Authors: Jim Hoagland and Stuart Staniford
See also the Snort Page by Marty Roesch
Page generated at Fri Aug 17 16:05:02 2018