Web Search

RSS feed, rounded corners Get notified on changes on this search

Searched: Sundown

Results from Main web retrieved at 14:13 (GMT)

#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Sundown EK Landing Apr 20 2015`; flow:established,from server; file data; content:` 27 3b d ...
#alert http $HOME NET any $EXTERNAL NET any (msg:`ET CURRENT EVENTS Sundown EK Flash Exploit Apr 20 2015`; flow:established,to server; content:`/bad/`; http uri ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Sundown EK Secondary Landing Apr 20 2015`; flow:established,from server; file data; content: ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Download file with Powershell via LNK file (observed in Sundown EK)`; flow:established,from server ...
#alert http $HOME NET any $EXTERNAL NET any (msg:`ET CURRENT EVENTS Possible Sundown EK URI Struct T1 Apr 24 2015`; flow:established,to server; content:`/street ...
#alert http $HOME NET any $EXTERNAL NET any (msg:`ET CURRENT EVENTS Possible Sundown EK Payload Struct T1 Apr 24 2015`; flow:established,to server; content:`.exe ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Sundown EK Secondary Landing T1 M2 Apr 24 2015`; flow:established,from server; file data; content ...
alert http $HOME NET any $EXTERNAL NET any (msg:`ET CURRENT EVENTS Possible Sundown EK Payload Struct T2 M1 Apr 24 2015`; flow:established,to server; content:` ...
#alert http $HOME NET any $EXTERNAL NET any (msg:`ET CURRENT EVENTS Possible Sundown EK Payload Struct T2 M2 Apr 24 2015`; flow:established,to server; content: ...
#alert http $HOME NET any $EXTERNAL NET any (msg:`ET CURRENT EVENTS Possible Sundown EK Flash Exploit Struct T2 Apr 24 2015`; flow:established,to server; flowbits ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Sundown EK Landing May 21 2015 M1`; flow:from server,established; file data; content:` 3c 21 ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Sundown EK Landing May 21 2015 M2`; flow:from server,established; file data; content:` 5e 23 ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS suspicious VBE encoded script (seen in Sundown EK)`; flow:established,from server; file data ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Encoded CVE 2014 6332 (As Observed in SunDown EK) M1`; flow:established,to client; file data ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Encoded CVE 2014 6332 (As Observed in SunDown EK) M2`; flow:established,to client; file data ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Encoded CVE 2014 6332 (As Observed in SunDown EK) M3`; flow:established,to client; file data ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS CVE 2016 0189 Exploit as Observed in Sundown/RIG EK (b641)`; flow:established,from server; file ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS CVE 2016 0189 Exploit as Observed in Sundown/RIG EK (b642)`; flow:established,from server; file ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS CVE 2016 0189 Exploit as Observed in Sundown/RIG EK (b643)`; flow:established,from server; file ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS CVE 2016 0189 Exploit as Observed in Sundown/RIG EK (b644)`; flow:established,from server; file ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS CVE 2016 0189 Exploit as Observed in Sundown/RIG EK (b645)`; flow:established,from server; file ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS CVE 2016 0189 Exploit as Observed in Sundown/RIG EK (b646)`; flow:established,from server; file ...
#alert http $HOME NET any $EXTERNAL NET any (msg:`ET CURRENT EVENTS SunDown EK Flash Exploit Sep 22 2016`; flow:established,to server; content:`.swf`; http uri ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK NOP Sled Sep 22 2016 (b641)`; flow:established,to client; file data; content:`LGZ4NWpdLGZ4NWpdLGZ4NWpdLGZ4NWpdLGZ4NWpdIF ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK NOP Sled Sep 22 2016 (b642)`; flow:established,to client; file data; content:`pdLGZ4NWpdLGZ4NWpdLGZ4NWpdLGZ4NWpdLGZ4NVEX ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK NOP Sled Sep 22 2016 (b643)`; flow:established,to client; file data; content:`4NWpdLGZ4NWpdLGZ4NWpdLGZ4NWpdLGZ4NWpdLGYUJ ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK Slight Sep 22 2016 (b641)`; flow:established,to client; file data; content:`x7soyTdaNq94NWpdLGZ4NWpd ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK Slight Sep 22 2016 (b642)`; flow:established,to client; file data; content:`MlADchNaR0LGZ4NWpdLGZ4N ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK Slight Sep 22 2016 (b643)`; flow:established,to client; file data; content:`azTEhyWNbKGpdLGZ4NWpdLG ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2015 0016 Sep 22 2016 (b641)`; flow:established,to client; file data; content ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2015 0016 Sep 22 2016 (b642)`; flow:established,to client; file data; content ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2015 0016 Sep 22 2016 (b643)`; flow:established,to client; file data; content ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2016 0189 Sep 22 2016 (b641)`; flow:established,to client; file data; content ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2016 0189 Sep 22 2016 (b642)`; flow:established,to client; file data; content ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2016 0189 Sep 22 2016 (b643)`; flow:established,to client; file data; content ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2013 2551 Sep 22 2016 (b641)`; flow:established,to client; file data; content ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2013 2551 Sep 22 2016 (b642)`; flow:established,to client; file data; content ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK CVE 2013 2551 Sep 22 2016 (b643)`; flow:established,to client; file data; content ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Flash Exploit Likely SunDown EK`; flow:established,from server; flowbits:isset,HTTP.UncompressedFlash ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK Landing Oct 03 2016`; flow:from server,established; file data; content:` 28 65 78 ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS Sundown/Xer EK Landing Jul 06 2016 M1`; flow:established,from server; content:`X Powered By ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET EXPLOIT CVE 2016 3210 Exploit Observed ITW M1 Nov 30`; flow:established,from server; file data; content:` 43 ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET EXPLOIT CVE 2016 3210 Exploit Observed ITW M1 Nov 30`; flow:established,from server; file data; content:` 77 ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET EXPLOIT Possible Microsoft Edge Chakra.dll Type Confusion (CVE 2016 7200 CVE 2016 7201) Observed in SunDown ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET EXPLOIT Possible Microsoft Edge Chakra.dll Type Confusion (CVE 2016 7200 CVE 2016 7201) Observed in SunDown ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET EXPLOIT Possible Microsoft Edge Chakra.dll Type Confusion (CVE 2016 7200 CVE 2016 7201) Observed in SunDown ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET EXPLOIT Possible Microsoft Edge Chakra.dll Type Confusion (CVE 2016 7200 CVE 2016 7201) B641`; flow:established ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET EXPLOIT Possible Microsoft Edge Chakra.dll Type Confusion (CVE 2016 7200 CVE 2016 7201) B642`; flow:established ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET EXPLOIT Possible Microsoft Edge Chakra.dll Type Confusion (CVE 2016 7200 CVE 2016 7201) B643`; flow:established ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M1 B641`; flow:established,from server; file data; content:` 4a694270626e525562314e30636968685a4752794b ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M1 B642`; flow:established,from server; file data; content:` 596761573530564739546448496f5957526b6369 ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M1 B643`; flow:established,from server; file data; content:` 6d49476c7564465276553352794b47466b5a484970 ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M2 B641`; flow:established,from server; file data; content:` 496d784a62477873496a6f69646d6c7964485668624842796233526c5933 ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M2 B642`; flow:established,from server; file data; content:` 4a735357787362434936496e5a70636e523159577877636d39305a574e30 ...
#alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M2 B643`; flow:established,from server; file data; content:` 6962456c73624777694f694a3261584a306457467363484a766447566a64 ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M3 B641`; flow:established,from server; file data; content:` 593268796479677a4d6a63324e79 ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M3 B642`; flow:established,from server; file data; content:` 6a61484a334b444d794e7a59334b ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M3 B643`; flow:established,to client; file data; content:` 4e6f636e636f4d7a49334e6a6370 ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M4 B641`; flow:established,from server; file data; content:` 657949784e7a51784e6949364e4441344d44597a4e6977694d5463304f5459694f6a51774f4441324d7a5973496a45334e6a4d78496a6f304d4467304e7a51344c4349784e7a59304d43 ...
alert http $EXTERNAL NET any $HOME NET any (msg:`ET CURRENT EVENTS SunDown EK RIP Landing M4 B642`; flow:established,from server; file data; content:` 73694d5463304d5459694f6a51774f4441324d7a5973496a45334e446b32496a6f304d4467774e6a4d324c4349784e7a597a4d5349364e4441344e4463304f4377694d5463324e444169 ...
alert http $HOME NET any $EXTERNAL NET any (msg:`ET INFO Secondary Flash Request Seen (no alert)`; flow:established,to server; http referer; content:`/ DYNAMIC ...
Number of topics: 61

  Advanced search | Help
TIP: to search for all topics that contain "SOAP", "WSDL", a literal "web service", but not "shampoo", write: soap wsdl "web service" -shampoo
Search where:       
(otherwise search Main Web only)

Other search options:
Topic revision: r12 - 2018-02-13 - MattJonkman
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats