Open Side Menu
Skip to contentBrand Logo
Home
Help
Blogs
Events & Media
Challenges
Private Groups
  1. Immersive Community
  2. Help
  3. Help

Forum Discussion

retornet's avatar
retornet
Bronze III
1 year ago
Solved

Snort Rules: Ep.7 – Lokibot Infection Traffic

I need help with the last question please. I tried so many rules and I am still getting it wrong 13-Create a Snort rule to detect this User-Agent string in the HTTP header for connections using po...
application security
challenges
cyber range exercises
cyber ranges
defensive cyber
feedback
help & support
offensive cyber
other
questions & feedback
  • retornet's avatar
    retornet
    1 year ago

    the port number should be the source instead of dst 

retornet's avatar
retornet
Bronze III
1 year ago

I finally got it 

Featured Places

Help

Related Content
  • Re: SuperSonic: Ep.6 – TEMPLE
    1 year ago
    pbogu
  • Modern Encryption: Demonstrate Your Skills (Q9)
    7 months ago
    GuyIncognito
  • Re: Threat Hunting Mining Behaviour - Question 1
    1 year ago
    KieranRowley
  • New CTI Lab: Lotus Blossom Notepad ++ Campaign: Analysis
    5 months ago
    benhopkins
  • New CTI Labs: Ruby Jumper Campaign: Analysis and Threat Actors: APT37
    4 months ago
    benhopkins

Recent Discussions

  • kevinh's avatar
    PowerShell Deobfuscation – Challenge 8
    Solved
    14 hours ago
    kevinh
  • kevinh's avatar
    DFIR CTF: PCAP Challenge - Question 7
    21 hours ago
    kevinh
  • Dark_Knight666's avatar
    Trick or Treat on Specter Street: Ghost of the SOC
    1 day ago
    Dark_Knight666
  • Tesleem's avatar
    Microsoft Sentinel SOAR: Demonstrate Your Skills
    1 day ago
    Tesleem
  • Moon113's avatar
    Need help in Microsoft Sentinel: Security Orchestration Automation and Response (SOAR)
    1 day ago
    Moon113
Community HomePrivacy PolicyHelp
Powered By Khoros