[olug] ShellShock packet capture

Aric Aasgaard aric at omahax.com
Mon Sep 29 19:33:30 CDT 2014


Are any of you running Snort or a similar IDS that saves alert packets?  I have had the shell code rules on.  You would think that if this exploit was used in the past it would show up in IDS logs.  It would be interesting to see if it was used and who by before it was discovered.  I would think any place of high security would have seen it very quickly. 


Sent from my Verizon Wireless 4G LTE Smartphone


More information about the OLUG mailing list