ET CINS Active Threat Intelligence Poor Reputation IP
ET DROP Dshield Block Listed Source group 1
ET EXPLOIT HackingTrio UA (Hello, World)
ET SCAN Sipvicious User-Agent Detected (friendly-scanner)
ET POLICY PE EXE or DLL Windows file download HTTP
ET TROJAN DNS Reply Sinkhole - Anubis - 195.22.26.192/26
SURICATA Applayer Mismatch protocol both directions
SURICATA HTTP missing Host header
SURICATA STREAM 3way handshake SYNACK with wrong ack
SURICATA STREAM 3way handshake SYN resend different seq on SYN recv
SURICATA STREAM 3way handshake wrong seq wrong ack
SURICATA TLS invalid record/traffic