alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; depth:12; threshold: type limit, count 1, seconds 120, track by_src; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; classtype:policy-violation; sid:2010144; rev:6; metadata:created_at 2010_07_30, updated_at 2010_07_30;)

Added 2017-08-07 21:03:15 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; depth:12; threshold: type limit, count 1, seconds 120, track by_src; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; classtype:policy-violation; sid:2010144; rev:6;)

Added 2014-09-18 17:12:08 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; depth:12; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; classtype:policy-violation; sid:2010144; rev:5;)

Added 2011-10-12 19:29:01 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; depth:12; classtype:policy-violation; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; sid:2010144; rev:5;)

Added 2011-09-14 22:42:18 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; depth:12; classtype:policy-violation; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Vuze; sid:2010144; rev:5;)

Added 2011-02-04 17:29:36 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; offset:0; depth:12; classtype:policy-violation; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Vuze; sid:2010144; rev:3;)

Added 2009-11-02 20:30:41 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; offset:0; depth:12; classtype:policy-violation; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Vuze; sid:2010144; rev:3;)

Added 2009-11-02 20:30:41 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; offset:0; depth:12; classtype:policy-violation; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Vuze; sid:2010144; rev:3;)

Added 2009-11-02 20:26:37 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; offset:0; depth:12; classtype:policy-violation; reference:url,vuze.com; reference:url,doc.emergingthreats.net/2010144; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/P2P/P2P_Vuze; sid:2010144; rev:3;)

Added 2009-11-02 20:26:37 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04 17 27 10 19 80 00 00 00 00|"; offset:0; depth:12; classtype:policy-violation; reference:url,vuze.com; sid:2010144; rev:2;)

Added 2009-10-27 08:20:32 UTC


alert udp $HOME_NET 1024:65535 -> $EXTERNAL_NET any (msg:"ET P2P? Vuze BT UDP Connection (5)"; dsize:<20; content:"|00 00 04|"; depth:3; content:"|00 00 00 00|"; distance:5; depth:4; classtype:policy-violation; reference:url,vuze.com; sid:2010144; rev:1;)

Added 2009-10-20 11:00:43 UTC


Topic revision: r2 - 2009-10-27 - MattJonkman
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats