Skip to Content
IDS and IPS with Snort 3
book

IDS and IPS with Snort 3

by Ashley Thomas
September 2024
Beginner content levelBeginner
256 pages
6h 24m
English
Packt Publishing
Content preview from IDS and IPS with Snort 3

11

DCE/RPC Inspectors

A Remote Procedure Call (RPC) enables programs on one system (computer) to invoke a procedure or function on a different system (computer). An RPC is a network protocol that the calling program (client) uses to communicate with the service on a system (server) that implements the called procedure. DCE/RPC is a protocol that enables the RPC feature in a Distributed Computing Environment (DCE) system. Microsoft’s implementation of the DCE/RPC protocol is referred to as MSRPC.

In recent years, the DCE/RPC protocol has been used as an attack vector by bad actors. Some of the recently noted DCE/RPC-related vulnerabilities include the PrintNightmare vulnerabilities (CVE-2021-1675, CVE-2021-34527, and CVE-2021-34527), the zero-click ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Start your free trial

You might also like

Web Penetration Testing with Kali Linux - Third Edition

Web Penetration Testing with Kali Linux - Third Edition

Daniel W. Dieterle, Gilberto Najera-Gutierrez, Juned Ahmed Ansari
Windows Security Monitoring

Windows Security Monitoring

Andrei Miroshnikov

Publisher Resources

ISBN: 9781800566163Supplemental Content