n-timm
Level 1
Level 1
Member since ‎10-15-2002
‎08-18-2017

User Statistics

  • 12 Posts
  • 0 Solutions
  • 0 Helpful votes Given
  • 0 Helpful votes Received
Recent Badges
5 Discussion Posts
10 Discussion Posts
5 Replies

User Activity

What does this sig look for? It appears to be very noisy and from events I have seen all the traffic is netbios traffic on port 139 or 445. All between internal host.
would like to create new variables to be used by sapd or change existing one but do not know where these are stored or how they are configured.
This signature tends to fire on only one echo reply being sent have seen this in many cases multiple request come in with one reply and this fires. Is this a known issue or possible bug with signature.
Had these files fill up the /var/ partition they were in /var/tmp/ on a few differernt netrangers they contain nothing but ip address with port 80 and the ip's can't be found in the netranger logs.
What does this signature fire on there are many different fingerprint technologies used by nmap.
Community Statistics
Member Since ‎10-15-2002 06:00 AM
Date Last Visited ‎08-18-2017 03:51 AM
Posts 12