Alert Table for File Transfer T-J.pcap

Relative Time	Packet	Source	Source Port	Destination	Dest Port	Category	Rule Set	Signature	Severity
14402.0	224	192.168.141.144	50115	192.168.141.68	445	Generic Protocol Command Decode	SURICATA SMB	file overlap	3
14402.0	225	192.168.141.68	445	192.168.141.144	50115	Generic Protocol Command Decode	SURICATA SMB	file overlap	3
14402.0	407	192.168.141.144	50115	192.168.141.68	445	Generic Protocol Command Decode	SURICATA SMB	file overlap	3
14402.0	408	192.168.141.68	445	192.168.141.144	50115	Generic Protocol Command Decode	SURICATA SMB	file overlap	3
14403.0	1002	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1018	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1037	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1056	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1105	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1158	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1172	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1205	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1224	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1266	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1308	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	1354	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	758	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	792	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	795	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	837	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	856	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14403.0	886	192.168.141.144	50115	192.168.141.68	445	Potentially Bad Traffic	ET POLICY	Possible WMI .mof Managed Object File Use Over SMB	2
14409.0	4056	192.168.141.144	50115	192.168.141.68	445	Generic Protocol Command Decode	SURICATA SMB	file overlap	3
14409.0	4057	192.168.141.68	445	192.168.141.144	50115	Generic Protocol Command Decode	SURICATA SMB	file overlap	3

Open in new window Done