Forum Discussion

Bronze III

10 months ago

Solved

Snort Rules: Ep.7 – Lokibot Infection Traffic

I need help with the last question please. I tried so many rules and I am still getting it wrong 13-Create a Snort rule to detect this User-Agent string in the HTTP header for connections using po...

application security

challenges

cyber range exercises

retornet
10 months ago
the port number should be the source instead of dst

retornet

Bronze III

10 months ago

I finally got it

Forum Discussion

Snort Rules: Ep.7 – Lokibot Infection Traffic

Featured Places

Help

Related Content

Re: SuperSonic: Ep.6 – TEMPLE

Modern Encryption: Demonstrate Your Skills (Q9)

Re: Threat Hunting Mining Behaviour - Question 1

New CTI Lab: Lotus Blossom Notepad ++ Campaign: Analysis

New CTI Labs: Ruby Jumper Campaign: Analysis and Threat Actors: APT37

Recent Discussions

Microsoft Sentinel SOAR: Demonstrate Your Skills Question 11

APT29 Threat Hunting with Splunk: Demonstrate Your Skills - Question 10

Microsoft Sentinel SOAR: Demonstrate Your Skills

Threat Actors: Salt Typhoon – SNAPPYBEE Campaign Analysis - Question 7

Ethereum: The Blockchain, Transactions, and Explorers