[Silicon Defense logo]

SnortSnarf alert page


SnortSnarf v021111.1

Signature section (237)Top 20 source IPsTop 20 dest IPs

4 such alerts found using input module SnortFileInput, with sources:
Earliest: 17:56:38.404542 on 07/07/2018
Latest: 17:56:41.413558 on 07/07/2018

1 different signatures are present for as a source

There are 1 distinct destination IPs in the alerts of the type on this page. Whois lookup at: ARIN RIPE APNIC Geektools
DNS lookup at: Amenesi TRIUMF Princeton
More lookup links: Dshield Sam Spade
See also as an alert destination [4 alerts]

[**] [1:777:0] ICMP traffic [**]
[Priority: 0]
07/07-17:56:38.404542 ->
ICMP TTL:128 TOS:0x0 ID:2324 IpLen:20 DgmLen:60
Type:8 Code:0 ID:1 Seq:1 ECHO
[**] [1:777:0] ICMP traffic [**]
[Priority: 0]
07/07-17:56:39.407440 ->
ICMP TTL:128 TOS:0x0 ID:2326 IpLen:20 DgmLen:60
Type:8 Code:0 ID:1 Seq:2 ECHO
[**] [1:777:0] ICMP traffic [**]
[Priority: 0]
07/07-17:56:40.410520 ->
ICMP TTL:128 TOS:0x0 ID:2328 IpLen:20 DgmLen:60
Type:8 Code:0 ID:1 Seq:3 ECHO
[**] [1:777:0] ICMP traffic [**]
[Priority: 0]
07/07-17:56:41.413558 ->
ICMP TTL:128 TOS:0x0 ID:2329 IpLen:20 DgmLen:60
Type:8 Code:0 ID:1 Seq:4 ECHO

SnortSnarf brought to you courtesy of Silicon Defense
Authors: Jim Hoagland and Stuart Staniford
See also the Snort Page by Marty Roesch
Page generated at Tue Mar 19 00:02:48 2019