Contact us

Solutions

Featured solutions AI Campus and branch Data center WAN Security Service provider Cloud operator Industries

Services

Services

Take me to HPE.com

SHELLCODE: Linux Shell Bind TCP Metasploit Stager Payload

This signature detects malicious shell bind tcp metasploit stager shellcode. A stager shellcode establishes a communication channel between the attacker and the victim and reads in a subsequent payload to execute on the remote host. Attempts to execute such shellcode indicate malicious activity.

References

URL: http://www.rapid7.com/db/modules/payload/windows/x64/shell/bind_tcp

Short Name

SHELLCODE:X64:LINUX-SHELL-BIND

Severity

Critical

Recommended

False

Recommended Action

Drop

Category

SHELLCODE

Keywords

Bind Linux Metasploit Payload Shell Stager TCP

Release Date

08/27/2014

Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version

3324

Port

TCP/0-79,81-442,444-3127,3129-7999,8001-8079,8081-65535

False Positive

Unknown