[Dshield] infocon: yellow
chrisr at stopthemcold.com
Mon Aug 11 22:10:00 GMT 2003
Excellent, Thank you! I know what it is doing fairly well, but I want to
analyze the HOW of it.
From: list-bounces at dshield.org [mailto:list-bounces at dshield.org] On
Behalf Of Jonathan Rickman
Sent: Monday, August 11, 2003 3:38 PM
To: General DShield Discussion List
Subject: Re: [Dshield] infocon: yellow
On Monday 11 August 2003 17:01, Chris Ream wrote:
> Has anyone captured the packet stream? I've got some sensors listening
> but have not yet seen it. I would like to reconstruct it and
> it to find out exactly what it's doing.
> If anyone has captured it and is willing to share it I would greatly
> appreciate it.
Hex dump from netcat attached.
X Corps Security
More information about the list