Short Name |
DDOS:TRINITY:DEFAULT-PW |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
DDOS |
Keywords |
Trinity Default Password |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects the command string "!@#" in a TCP packet sent from port 33270. This can indicate a Trinity client is attempting to login to a Trinity agent and gain root shell access. Attackers can use Trinity, a distributed-denial-of-service (DDoS) attack tool, to flood IP addresses with packets from forged source addresses.
Trinity is a Distributed Denial of Service(DDOS) tool for Linux with a backdoor component.