SID 1:18609

Report a false positive

Rule Category

APP-DETECT -- Snort attempted to take unique patterns of traffic and match them to a known application pattern, to confirm whether traffic should be allowed or stopped. (For example, a Get request is usually an HTTP/web application exchange, perhaps Facebook Messenger or other instant messenger, etc.).

Alert Message

APP-DETECT Dropbox desktop software in use

Rule Explanation

This event is generated when network traffic that indicates Dropbox Desktop Software in use is being used. Impact: Possible policy violation. The use of Dropbox Desktop Software in use may be prohibited by corporate policy in some network environments. Details: This event indicates that the Dropbox Desktop Software in use is being used on the protected network. Ease of Attack: Simple.

What To Look For

No information provided

Known Usage

No public information

False Positives

No known false positives

Contributors

Cisco Talos

Rule Groups

No rule groups

CVE

None

Rule Vulnerability

No information provided

CVE Additional Information

This product uses data from the NVD API but is not endorsed or certified by the NVD.

None