Suricata-vs-snort/Test-cases/Bad-traffic

From aldeid

Jump to navigation Jump to search

You are here:

Suricata vs Snort

Bad traffic

Synthesis

Test	Suricata	snort
Nmap Xmas scan	0	0
Malformed Traffic	0	0
Land Attack	0	0
TOTAL	0	0

Nmap Xmas scan

Test: Nmap Xmas scan
Payload:

sudo nmap -sX -p 80 192.168.100.36

Suricata trace: N/A
Suricata score: 0
Snort trace: N/A
Snort score: 0

Malformed traffic

Test: Malformed traffic
Payload (scapy):

send(IP(dst="192.168.100.35", ihl=2, version=3)/ICMP())

Suricata trace: N/A
Suricata score: 0
Snort trace: N/A
Snort score: 0

Land attack

Test: Land attack
Payload:

send(IP(src="192.168.100.35",dst="192.168.100.35")/TCP(sport=135,dport=135))

Suricata trace: N/A
Suricata score: 0
Snort trace: N/A
Snort score: 0

Comments

Talk:Suricata-vs-snort/Test-cases/Bad-traffic

Retrieved from "https://www.aldeid.com/w/index.php?title=Suricata-vs-snort/Test-cases/Bad-traffic&oldid=22316"

Share your opinion