Snort mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Worm detection in LAN

From: Balasubramaniam Natarajan <bala150985 () gmail com>
Date: Tue, 11 Dec 2012 11:33:05 -0500
On Tue, Dec 11, 2012 at 5:43 AM, reshma purushothaman <
reshmapurushothaman () gmail com> wrote:


hai...
    Thankx  for your responds..
 we only need the IP address of the client who send worm affected packet,
also want to get the file name of th rejected packet with confirmation,
from the snort tool. we don't want all the details regarding  data
transmission in LAN with and without affected packets..



Ok Do you have a sample PCAP ?

-- 
Regards,
Balasubramaniam Natarajan
www.blog.etutorshop.com

------------------------------------------------------------------------------
LogMeIn Rescue: Anywhere, Anytime Remote support for IT. Free Trial
Remotely access PCs and mobile devices and provide instant support
Improve your efficiency, and focus on delivering more value-add services
Discover what IT Professionals Know. Rescue delivers
http://p.sf.net/sfu/logmein_12329d2d
_______________________________________________
Snort-users mailing list
Snort-users () lists sourceforge net
Go to this URL to change user options or unsubscribe:
https://lists.sourceforge.net/lists/listinfo/snort-users
Snort-users list archive:
http://sourceforge.net/mailarchive/forum.php?forum_name=snort-users

Please visit http://blog.snort.org to stay current on all the latest Snort news!
Previous By Date Next
Previous By Thread Next

Current thread: