Notes / Threat IntelligenceLibreOffice Impress Remote ServerLibreOffice Impress Remote Server13 February 20221 min readCategories:threat-intelligenceTags:tcp1599libreofficeimpressContentsPacket detailsProtocolPortContent MD5Sample date timeASCIIHEXExternal referenceOriginal packetArchive note: This observation was migrated from the former threatdump project. It is retained as historical packet research and is not a live threat feed. LibreOffice Impress Remote Server access. Slideshow remote control.Packet detailsProtocolTCPPort1599Content MD5462983b3-2acd-b45e-de72-f3bdaa23f469Sample date time2022-02-09 18:33:26.651ASCIILO_SERVER_CLIENT_PAIR Firefox OS 0000 HEX4c4f5f5345525645525f434c49454e545f504149520a46697265666f78204f530a303030300a0a External referenceNmap Impress NSELibreOffice Slideshow remote controllOriginal packetBytes← Asterisk ManagerJava Debug Wire Protocol(JDWP) Handshake →
