query missing from "blacklisted dns answer" evidence #1111

AlyaGomaa · 2024-12-10T14:32:05Z

cmd: ./slips.py -e 1 -f dataset/test6-malicious.suricata.json -o a

Evidence: - Detected DNS answer with a blacklisted IP: 122.248.252.67 for query: Description: 1.2613571570498145e-05 Source: AIP_historical_blacklist_prioritized_by_newest_attackers.csv. threat level: medium.

AlyaGomaa added this to Slips Dec 10, 2024

AlyaGomaa converted this from a draft issue Dec 10, 2024

AlyaGomaa moved this from Todo to Working on it in Slips Dec 11, 2024

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

query missing from "blacklisted dns answer" evidence #1111

query missing from "blacklisted dns answer" evidence #1111

AlyaGomaa commented Dec 10, 2024

query missing from "blacklisted dns answer" evidence #1111

query missing from "blacklisted dns answer" evidence #1111

Comments

AlyaGomaa commented Dec 10, 2024