cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

About mfs

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
mfs
‎08-31-2020
since ‎09-04-2012
L0 Member
User Activity
User Profile
Latest posts by mfs
View All
User Badges
Community Statistics
Member Since ‎09-04-2012 07:04 AM
Date Last Visited ‎08-31-2020 06:38 PM
Posts 3

Re: Trouble with Custom MSRPC Based AppID

by in Automation/API Discussions
‎11-03-2014 05:30 AM
‎11-03-2014 05:30 AM
H, The issue is that the custom signature(s) do not fire when I send specific MSRPC bind requests through the firewall. I only see msrpc identified by the firewall, but clearly see the specific BIND request in a PCAP on the server. In the case of the signature in the OP, I am looking for the DFS BIND request. Thanks! ... View more

Trouble with Custom MSRPC Based AppID

by in Automation/API Discussions
‎10-31-2014 02:20 PM
‎10-31-2014 02:20 PM
I am trying to create a number of custom MSRPC based App's using the msrpc-req-bind-data contact. I have set msrpc as the parent app, dynamic TCP and UDP for the ports, and the signatures are set to the session scope. I pulled the hex for the BIND request interfaces directly from Wireshark running on the AD server. See below screenshot for the signature (this is the interface for DFS): ... View more
Register or Sign-in
Contact Me
Online Status
Offline
Date Last Visited
‎08-31-2020 06:38 PM
Latest Tags
No tags yet
LEGAL NOTICES
RESOURCES
Copyright 2007 - 2022 - Palo Alto Networks