Suricata-vs-snort/Test-cases/Bad-traffic

From aldeid
Jump to navigation Jump to search
You are here:
Bad traffic

Synthesis

Test Suricata snort
Nmap Xmas scan 0 0
Malformed Traffic 0 0
Land Attack 0 0
TOTAL 0 0

Nmap Xmas scan

  • Test: Nmap Xmas scan
  • Payload:
sudo nmap -sX -p 80 192.168.100.36
  • Suricata trace: N/A
  • Suricata score: 0
  • Snort trace: N/A
  • Snort score: 0

Malformed traffic

  • Test: Malformed traffic
  • Payload (scapy):
send(IP(dst="192.168.100.35", ihl=2, version=3)/ICMP()) 
  • Suricata trace: N/A
  • Suricata score: 0
  • Snort trace: N/A
  • Snort score: 0

Land attack

  • Test: Land attack
  • Payload:
send(IP(src="192.168.100.35",dst="192.168.100.35")/TCP(sport=135,dport=135))
  • Suricata trace: N/A
  • Suricata score: 0
  • Snort trace: N/A
  • Snort score: 0

Comments

Talk:Suricata-vs-snort/Test-cases/Bad-traffic