alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET POLICY HTTP Request to a *.co.be domain"; flow: to_server,established; content:".co.be|0D 0A|"; http_header; classtype:bad-unknown; sid:2013123; rev:5;)

Added 2014-09-15 18:30:46 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET $HTTP_PORTS (msg:"ET CURRENT_EVENTS HTTP Request to a *.co.be domain"; flow: to_server,established; content:".co.be|0D 0A|"; fast_pattern:only; http_header; classtype:bad-unknown; sid:2013123; rev:3;)

Added 2011-12-01 18:59:15 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET $HTTP_PORTS (msg:"ET CURRENT_EVENTS HTTP Request to a Suspicious *.co.be domain"; flow: to_server,established; content:".co.be|0D 0A|"; fast_pattern:only; http_header; classtype:bad-unknown; sid:2013123; rev:3;)

Added 2011-10-12 19:36:07 UTC


alert tcp $HOME_NET any -> $EXTERNAL_NET $HTTP_PORTS (msg:"ET CURRENT_EVENTS HTTP Request to a Suspicious *.co.be domain"; flow: to_server,established; content:".co.be|0D 0A|"; fast_pattern:only; http_header; classtype:bad-unknown; sid:2013123; rev:3;)

Added 2011-06-28 19:36:27 UTC


Topic revision: r1 - 2014-09-15 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats