IDS: ET MALWARE Librarian Ghouls CnC Domain in DNS Lookup (hostingforme .nl)
Разбор сигнатуры IDS: ET MALWARE Librarian Ghouls CnC Domain in DNS Lookup (hostingforme .nl)
IDS
IDS: ET MOBILE_MALWARE XML Style POST Of IMSI International Mobile Subscriber Identity
Разбор сигнатуры IDS: ET MOBILE_MALWARE XML Style POST Of IMSI International Mobile Subscriber Identity
IDS: Realtek eCOS SDK SIP Traffic Exploit CVE-2022-27255
Разбор сигнатуры IDS: Realtek eCOS SDK SIP Traffic Exploit CVE-2022-27255
IDS: AM POLICY RDP session ended with RST
Разбор сигнатуры IDS: AM POLICY RDP session ended with RST
IDS: ET SCAN Potential SSH Scan OUTBOUND
Разбор сигнатуры IDS: ET SCAN Potential SSH Scan OUTBOUND
IDS: MALWARE-CNC Win.Trojan.Glupteba C&C server HELLO request to client
Разбор сигнатуры IDS: MALWARE-CNC Win.Trojan.Glupteba C&C server HELLO request to client
IDS: SQL use of sleep function in HTTP header - likely SQL injection attempt
Разбор сигнатуры IDS: SQL use of sleep function in HTTP header - likely SQL injection attempt
IDS: ET SCAN Behavioral Unusually fast Terminal Server Traffic Potential Scan or Infection (Inbound)
Разбор сигнатуры IDS: ET SCAN Behavioral Unusually fast Terminal Server Traffic Potential Scan or Infection (Inbound)
IDS: ET TROJAN Possible WannaCry? DNS Lookup 1
Разбор сигнатуры IDS: ET TROJAN Possible WannaCry? DNS Lookup 1
IDS: ET TROJAN Possible WannaCry? DNS Lookup 2
Разбор сигнатуры IDS: ET TROJAN Possible WannaCry? DNS Lookup 2
IDS: ET EXPLOIT Possible ETERNALBLUE MS17-010 Heap Spray
Разбор сигнатуры IDS: ET EXPLOIT Possible ETERNALBLUE MS17-010 Heap Spray
IDS: ET EXPLOIT Possible ETERNALBLUE MS17-010 Echo Request (set)
Разбор сигнатуры IDS: ET EXPLOIT Possible ETERNALBLUE MS17-010 Echo Request (set)