Signature Detail

Short Name	SHELLCODE:X64:LINUX-REVERSE-80C
Severity	Critical
Recommended	Yes
Recommended Action	Drop
Category	SHELLCODE
Keywords	SHELLCODE: Linux x64 Reverse TCP Stager Payload
Release Date	2014/12/15
Update Number	2451
Supported Platforms	idp-4.1+, isg-3.5.141421+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

SHELLCODE: Linux x64 Reverse TCP Stager Payload Over HTTP (CTS)

This signature detects malicious reverse tcp metasploit stager shellcode. A stager shellcode establishes a communication channel between the attacker and the victim and reads in a subsequent payload to execute on the remote host. Attempts to execute such shellcode indicate malicious activity.

References

URL: http://www.rapid7.com/db/modules/payload/linux/x64/shell/reverse_tcp

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

SHELLCODE: Linux x64 Reverse TCP Stager Payload Over HTTP (CTS)

References