2001553 < Main < EmergingThreats

Main Web>2001553 (2018-09-13, TWikiGuest) (raw view)
 <h2>
 

#alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established,to_server; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; reference:url,doc.emergingthreats.net/2001553; classtype:attempted-dos; sid:2001553; rev:8; metadata:created_at 2010_07_30, updated_at 2010_07_30;)

</h2>

Added 2018-09-13 19:37:30 UTC


 %COMMENT{type="threadmode" default="Please enter documentation, comments, false positives, or concerns with this signature. Press the Attach button below to add samples or Pcaps." button="Add to Documentation" }%
 
 <hr>
 


 <h2>
 


</h2>

Added 2018-09-13 17:52:34 UTC


 
 <hr>
 


 <h2>
 

#alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established,to_server; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; reference:url,doc.emergingthreats.net/2001553; classtype:attempted-dos; sid:2001553; rev:8; metadata:created_at 2010_07_30, updated_at 2010_07_30;)

</h2>

Added 2017-08-07 20:55:34 UTC


 
 <hr>
 


 <h2>
 

#alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; reference:url,doc.emergingthreats.net/2001553; classtype:attempted-dos; sid:2001553; rev:7;)

</h2>

Added 2011-10-12 19:10:39 UTC


 
 <hr>
 


 <h2>
 

#alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; reference:url,doc.emergingthreats.net/2001553; sid:2001553; rev:7;)

</h2>

Added 2011-09-14 21:01:34 UTC


 
 <hr>
 


 <h2>
 

#alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; reference:url,doc.emergingthreats.net/2001553; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_SSL_Brute_or_Crawl; sid:2001553; rev:7;)

</h2>

Added 2011-02-04 17:21:31 UTC


 
 <hr>
 


 <h2>
 

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; reference:url,doc.emergingthreats.net/2001553; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_SSL_Brute_or_Crawl; sid:2001553; rev:7;)

</h2>

Added 2010-06-28 22:47:02 UTC


 
 <hr>
 


 <h2>
 

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; reference:url,doc.emergingthreats.net/2001553; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_SSL_Brute_or_Crawl; sid:2001553; rev:7;)

</h2>

Added 2010-06-28 22:47:02 UTC


 
 <hr>
 


 <h2>
 

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; reference:url,doc.emergingthreats.net/2001553; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_SSL_Brute_or_Crawl; sid: 2001553; rev:7;)

</h2>

Added 2009-02-12 18:21:19 UTC


 
 <hr>
 


 <h2>
 

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; reference:url,doc.emergingthreats.net/2001553; reference:url,www.emergingthreats.net/cgi-bin/cvsweb.cgi/sigs/SCAN/SCAN_SSL_Brute_or_Crawl; sid: 2001553; rev:7;)

</h2>

Added 2009-02-12 18:21:19 UTC


 
 <hr>
 


 <h2>
 

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; sid: 2001553; rev:6;)

</h2>

Added 2008-01-29 10:56:40 UTC


 
 <hr>
 


 <h2>
 

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; sid: 2001553; rev:6;)

</h2>

Added 2008-01-29 10:56:40 UTC


 
 <hr>
 


 <h2>
 

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg: "BLEEDING-EDGE Scan Possible SSL Brute Force attack or Site Crawl"; flow: established; flags: S; threshold: type threshold, track by_src, count 100, seconds 60; classtype: attempted-dos; sid: 2001553; rev:5; )

 </h2>
 <hr>
 
 
 <hr>
Topic revision: r1 - 2018-09-13 - TWikiGuest
Main
User Reference
ATasteOfTWiki
TextFormattingRules
Signature Reference
WebRss Feed
EmergingFAQ