[Oisf-users] Test IDS/IPS and NSM functionality of Suricata
Kaushal Shriyan
kaushalshriyan at gmail.com
Sat Feb 23 02:53:29 UTC 2019
On Sat, Feb 23, 2019 at 2:20 AM Travis Green <travis at travisgreen.net> wrote:
> Kaushal, many people test by simply sending an HTTP GET request to
> testmyids.com thusly:
>
> $ curl testmyids.com
>
> which fires these events for me:
> GPL ATTACK_RESPONSE id check returned root
> ET ATTACK_RESPONSE Output of id command from HTTP server
>
> -T
>
Hi Travis,
I am not sure if i understand it completely. So on Suricata server, when i
run curl testmyids.com
# curl testmyids.com
uid=0(root) gid=0(root) groups=0(root)
#
Please correct me if i am missing something.
Best Regards,
Kaushal
Best Regards,
Kaushal
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openinfosecfoundation.org/pipermail/oisf-users/attachments/20190223/a392b9bd/attachment.html>
More information about the Oisf-users
mailing list