alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; depth:17; reference:url,www.gnutella.com; reference:url,doc.emergingthreats.net/bin/view/Main/2001664; classtype:policy-violation; sid:2001664; rev:7;)

Added 2011-10-12 19:10:46 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; depth:17; classtype: policy-violation; reference:url,www.gnutella.com; reference:url,doc.emergingthreats.net/bin/view/Main/2001664; sid:2001664; rev:7;)

Added 2011-09-14 21:02:34 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; depth:17; classtype: policy-violation; reference:url,www.gnutella.com; reference:url,doc.emergingthreats.net/bin/view/Main/2001664; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Gnutella; sid:2001664; rev:7;)

Added 2011-02-04 17:21:33 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; offset: 0; depth: 17; classtype: policy-violation; reference:url,www.gnutella.com; reference:url,doc.emergingthreats.net/bin/view/Main/2001664; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Gnutella; sid:2001664; rev:5;)

Added 2010-06-28 22:46:59 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; offset: 0; depth: 17; classtype: policy-violation; reference:url,www.gnutella.com; reference:url,doc.emergingthreats.net/bin/view/Main/2001664; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Gnutella; sid:2001664; rev:5;)

Added 2010-06-28 22:46:59 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; offset: 0; depth: 17; classtype: policy-violation; reference:url,www.gnutella.com; reference:url,doc.emergingthreats.net/bin/view/Main/2001664; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Gnutella; sid: 2001664; rev:5;)

Added 2009-02-10 20:53:06 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; offset: 0; depth: 17; classtype: policy-violation; reference:url,www.gnutella.com; reference:url,doc.emergingthreats.net/bin/view/Main/2001664; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Gnutella; sid: 2001664; rev:5;)

Added 2009-02-10 20:53:06 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; offset: 0; depth: 17; classtype: policy-violation; reference:url,www.gnutella.com; sid: 2001664; rev:4;)

Added 2008-01-29 10:56:39 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg:"ET P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; offset: 0; depth: 17; classtype: policy-violation; reference:url,www.gnutella.com; sid: 2001664; rev:4;)

Added 2008-01-29 10:56:39 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET any (msg: "BLEEDING-EDGE P2P? Gnutella Connect"; flow: established,to_server; content:"GNUTELLA CONNECT/"; nocase; offset: 0; depth: 17; classtype: policy-violation; reference:url,www.gnutella.com; sid: 2001664; rev:3; )



Topic revision: r1 - 2011-10-12 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats