• Support
  • Forums
  • Blogs

Source of NIDS data

gryfld3dgryfld3d

Hi I was searching for an IP address on OTX and see some results in the NIDS signature hits for that IP.  Is there anyway to tell when this IP was added and is there anyway to determine the source? For example if the alert is "GENERIC SUSPICIOUS POST to Dotted Quad with Fake Browser 2" does that indicate that there is a POST to the IP I entered or that the IP I entered is performing the POST? 

Share post:

Sign In or Register to comment.