trendmicron logo - business

Aziende

search close
  • Soluzioni
    • Per obiettivo
      • Per obiettivo
        • Per obiettivo
          Ulteriori informazioni
      • Comprensione, prioritizzazione e mitigazione del rischio
        • Comprensione, prioritizzazione e mitigazione del rischio

          Migliora la tua condizione di rischio con la gestione della superficie di attacco

          Ulteriori informazioni
      • Protezione delle app native per il cloud
        • Protezione delle app native per il cloud

          La sicurezza che consente di ottenere risultati di business

          Ulteriori informazioni
      • Proteggi il tuo cloud ibrido
        • Proteggi il tuo mondo ibrido e multi cloud

          Ottieni visibilità e soddisfa le esigenze aziendali con la sicurezza

          Ulteriori informazioni
      • Protezione della forza lavoro senza confini
        • Protezione della forza lavoro senza confini

          Connettiti con fiducia da qualsiasi luogo e su qualsiasi dispositivo

          Ulteriori informazioni
      • Elimina i punti ciechi della rete
        • Elimina i punti ciechi della rete

          Proteggi gli utenti e le operazioni chiave in tutto l'ambiente

          Ulteriori informazioni
      • Ulteriori informazioni Rispondi più velocemente.
        • Ulteriori informazioni Rispondi più velocemente.

          Agisci più velocemente degli avversari grazie a potenti funzionalità XDR sviluppate ad hoc, gestione del rischio della superficie di attacco e approccio Zero Trust.

          Ulteriori informazioni
      • Espandi il tuo team
        • Espandi il tuo team. Rispondi in modo agile alle minacce

          Massimizza l'efficacia con la riduzione proattiva dei rischi e i servizi gestiti

          Ulteriori informazioni
      • Zero Trust in ambito operativo
        • Zero Trust in ambito operativo

          Comprendi la tua superficie di attacco, valuta il rischio in tempo reale e ottimizza le policy su rete, workload e dispositivi da un'unica console.

          Ulteriori informazioni
    • Per ruolo
      • Per ruolo
        • Per ruolo
          Ulteriori informazioni
      • CISO
        • CISO

          Aumenta il valore aziendale con risultati misurabili in termini di cybersecurity

          Ulteriori informazioni
      • SOC Manager
        • SOC Manager

          Aumenta la visibilità, agisci più velocemente

          Ulteriori informazioni
      • Responsabile delle infrastrutture
        • Responsabile delle infrastrutture

          Fai evolvere la sicurezza per mitigare le minacce in modo rapido ed efficace

          Ulteriori informazioni
      • Architetto e sviluppatore in cloud
        • Architetto e sviluppatore in cloud

          Garantisci che il codice venga eseguito solo come previsto

          Ulteriori informazioni
      • Cloud Security Ops
        • Cloud Security Ops

          Acquisisci visibilità e controllo con la sicurezza progettata per gli ambienti cloud

          Ulteriori informazioni
    • Per settore
      • Per settore
        • Per settore
          Ulteriori informazioni
      • Settore sanitario
        • Settore sanitario

          Proteggi i dati dei pazienti, i dispositivi e le reti rispettando le normative

          Ulteriori informazioni
      • Produzione industriale
        • Produzione industriale

          Proteggi gli ambienti della fabbrica, dai dispositivi tradizionali alle infrastrutture più avanzate

          Ulteriori informazioni
      • Petrolio e gas
        • Petrolio e gas

          Sicurezza di ICS/OT per il settore del petrolio e gas

          Ulteriori informazioni
      • Aziende di produzione elettrica
        • Aziende di produzione elettrica

          Sicurezza ICS/OT per il settore energetico

          Ulteriori informazioni
      • Settore automobilistico
        • Settore automobilistico
          Ulteriori informazioni
      • Reti 5G
        • Reti 5G
          Ulteriori informazioni
      • Servizi Finanziari
        • Servizi Finanziari

          Gestione del rischio informatico potenziata dall’IA per salvaguardare i dati dei clienti, consolidare la fiducia e garantire la conformità

          Ulteriori informazioni
    • NIS2 Direttiva
      • NIS2 Direttiva
        Ulteriori informazioni
    • Sicurezza per le piccole e medie imprese
      • Sicurezza per le piccole e medie imprese

        Blocca le minacce con soluzioni facili da usare progettate per la tua azienda in crescita

        Ulteriori informazioni
  • Piattaforma
    • Piattaforma Vision One
      • Piattaforma Vision One
        • Trend Vision One
          La nostra piattaforma unificata

          Collega la protezione dalle minacce e la gestione del rischio informatico

          Ulteriori informazioni
          trend-vision-one-laptop-console-nav
      • AI Companion
        • Trend Vision One Companion

          Il tuo assistente per la cybersecurity basato sull'IA generativa

          Ulteriori informazioni
    • Endpoint Security
      • Endpoint Security
        • Panoramica su Endpoint Security

          Difesa dell'endpoint durante ogni fase di un attacco

          Ulteriori informazioni
      • Industrial Endpoint Security
        • Industrial Endpoint Security
          Ulteriori informazioni
      • Workload Security
        • Workload Security

          Prevenzione, rilevamento e risposta ottimizzati per endpoint, server e workload in cloud

          Ulteriori informazioni
      • Mobile Security
        • Mobile Security

          Protezione locale e in cloud contro malware, applicazioni dannose e altre minacce ai dispositivi mobili

          Ulteriori informazioni
          sps-mobile-security-enterprise-console-shot?scl=1
      • XDR for Endpoint
        • XDR for Endpoint

          Ottieni una prospettiva più ampia e un contesto migliore per la ricerca, il rilevamento, l'indagine e la risposta alle minacce più rapidi

          Ulteriori informazioni
          xdr-product-console-shot?scl=1
    • Cloud Security
      • Cloud Security
        • Trend Vision One™
          Panoramica sulla sicurezza del cloud

          La piattaforma di sicurezza cloud più affidabile per sviluppatori, team di sicurezza e aziende.

          Ulteriori informazioni
      • Workload Security
        • Workload Security

          Proteggi datacenter, cloud e container senza compromettere le prestazioni utilizzando una piattaforma di sicurezza per il cloud con funzionalità CNAPP

          Ulteriori informazioni
          cloud-one-workload-security-console-shot?scl=1
      • Container Security
        • Container Security

          Semplifica la sicurezza delle applicazioni native per il cloud con scansione avanzata delle immagini dei container, controllo dell'accesso basato su criteri e protezione del runtime dei container

          Ulteriori informazioni
          cloud-one-container-console-shot?scl=1
      • File Security
        • File Security

          Proteggi il flusso di lavoro delle applicazioni e lo storage in-the-cloud dalle minacce avanzate

          Ulteriori informazioni
          cloud-one-file-storage-console-shot?scl=1
      • Attack Surface Risk Management for Cloud
        • Attack Surface Risk Management for Cloud

          Individuazione delle risorse in cloud, prioritizzazione delle vulnerabilità, gestione della postura di sicurezza in cloud e gestione della superficie di attacco, tutto in un'unica soluzione.

          Ulteriori informazioni
      • XDR for Cloud
        • XDR for Cloud

          Estensione della visibilità al cloud e semplificazione delle indagini SOC

          Ulteriori informazioni
          xdr-product-console-shot?scl=1
    • Sicurezza della rete
      • Sicurezza della rete
        • Panoramica della sicurezza di rete

          Estendi la potenza di XDR con rilevamento e risposta sulla rete

          Ulteriori informazioni
      • Network Intrusion Prevention (IPS)
        • Network Intrusion Prevention (IPS)

          Risolvi le vulnerabilità conosciute, sconosciute o non ancora scoperte presenti nella tua rete

          Ulteriori informazioni
      • Sistemi di rilevamento delle violazioni (BDS)
        • Sistemi di rilevamento delle violazioni (BDS)

          Rilevamento e risposta agli attacchi mirati in entrata, in uscita e laterali

          Ulteriori informazioni
      • Secure Service Edge (SSE)
        • Secure Service Edge (SSE)

          Ridefinisci la fiducia e proteggi la trasformazione digitale con valutazioni continue del rischio

          Ulteriori informazioni
          zero-trust-access-console-shot?scl=1
      • Industrial Network Security
        • Industrial Network Security
          Ulteriori informazioni
      • XDR for Networks
        • XDR for Networks

          Ottieni una prospettiva più ampia e un contesto migliore per la ricerca, il rilevamento, l'indagine e la risposta alle minacce più rapidi

          Ulteriori informazioni
          xdr-product-console-shot?scl=1
      • 5G Network Security
        • 5G Network Security
          Ulteriori informazioni
    • Tutti i prodotti, i servizi e le versioni di prova gratuite
      • Tutti i prodotti, i servizi e le versioni di prova gratuite
        Ulteriori informazioni
        all-products-console-shot?scl=1
    • Attack Surface Risk Management
      • Attack Surface Risk Management

        Blocca le violazioni prima che si verifichino

        Ulteriori informazioni
        asrm-console-shot?scl=1
    • Email Security
      • Email Security
        • Email Security

          Bloccate gli attacchi di phishing, malware, ransomware e le frodi prima che accedano all'azienda

          Ulteriori informazioni
      • Email and Collaboration Security
        • Trend Vision One™
          Email and Collaboration Security

          Blocca phishing, ransomware e attacchi mirati su qualsiasi servizio email, compresi Microsoft 365 e Google Workspace

          Ulteriori informazioni
          email-security-console-shot?scl=1
    • XDR (Rilevamento e risposta estesi)
      • XDR (Rilevamento e risposta estesi)

        Ottieni una prospettiva più ampia e un contesto migliore per la ricerca, il rilevamento, l'indagine e la risposta alle minacce più rapidi

        Ulteriori informazioni
        xdr-product-console-shot?scl=1
    • Threat Insights
      • Threat Insights

        Guarda le minacce provenienti da lontano

        Ulteriori informazioni
    • OT Security
      • OT Security
        • OT Security

          Ulteriori informazioni sulle soluzioni per la sicurezza ICS/OT.

          Ulteriori informazioni
      • Industrial Endpoint Security
        • Industrial Endpoint Security
          Ulteriori informazioni
      • Industrial Network Security
        • Industrial Network Security
          Industrial Network Security
      • XDR for OT
        • XDR for OT

          Ottieni una prospettiva più ampia e un contesto migliore per la ricerca, il rilevamento, l'indagine e la risposta alle minacce più rapidi

          Ulteriori informazioni
          xdr-product-console-shot?scl=1
    • Identity Security
      • Identity Security

        Sicurezza dell'identità end-to-end, dalla gestione della stato dell'identità alle attività di rilevamento e risposta

        Ulteriori informazioni
    • On-Premises Data Sovereignty
      • Sovranità dei dati on-premise

        Previeni, rileva, rispondi e proteggi senza compromettere la sovranità dei dati

        Ulteriori informazioni
  • Ricerca
    • Ricerca
      • Ricerca
        • Ricerca
          Ulteriori informazioni
      • Ricerca, novità e prospettive
        • Ricerca, novità e prospettive
          Ulteriori informazioni
      • Ricerca e analisi
        • Ricerca e analisi
          Ulteriori informazioni
      • Informazioni sulla sicurezza
        • Informazioni sulla sicurezza
          Ulteriori informazioni
      • Zero Day Initiative (ZDI)
        • Zero Day Initiative (ZDI)
          Ulteriori informazioni
  • Servizi
    • I nostri servizi
      • I nostri servizi
        • I nostri servizi
          Ulteriori informazioni
      • Pacchetti di servizi
        • Pacchetti di servizi

          Dai più potere ai team di sicurezza con il nostro servizio gestito di rilevamento, risposta e supporto attivo 24/7/365

          Ulteriori informazioni
      • Managed XDR
        • Managed XDR

          Potenzia la capacità di rilevamento delle minacce con la tecnologia MDR (Detection and Response) gestita da esperti per email, endpoint, server, workload in cloud e reti.

          Ulteriori informazioni
      • Servizi di assistenza
        • Servizi di assistenza
          Ulteriori informazioni
      • Risposta agli incidenti
        • Risposta agli incidenti
          • Risposta agli incidenti

            I nostri esperti di fiducia sono a disposizione sia che stiate subendo una violazione, sia che vogliate migliorare in modo proattivo i vostri piani di risposta agli incidenti.

            Ulteriori informazioni
        • Compagnie di assicurazione e studi legali
          • Compagnie di assicurazione e studi legali

            Blocca le violazioni con la migliore tecnologia di rilevamento e risposta sul mercato e riduci i tempi di inattività dei clienti e il costo dei risarcimenti

            Ulteriori informazioni
  • Partner
    • Partner Program
      • Partner Program
        • Panoramica Programma per i partner

          Fai crescere la tua azienda e proteggi i tuoi clienti con la migliore sicurezza completa e multistrato

          Ulteriori informazioni
      • Competenze dei partner
        • Competenze dei partner

          Fatti notare dai clienti con attestazioni di competenza che mettano in evidenza la tua esperienza.

          Ulteriori informazioni
      • Successi del partner
        • Successi del partner
          Ulteriori informazioni
      • Provider di servizi di sicurezza gestiti
        • Provider di servizi di sicurezza gestiti

          Fornisci servizi di operazioni di sicurezza moderni con il nostro XDR leader del settore

          Ulteriori informazioni
      • Provider di servizi gestiti
        • Provider di servizi gestiti

          Collabora con un esperto leader nella cybersecurity, sfrutta soluzioni collaudate progettate per i provider di servizi gestiti

          Ulteriori informazioni
    • Alliance Partners
      • Alliance Partners
        • Alliance Partners

          Lavoriamo con i migliori per aiutarti a ottimizzare prestazioni e valore

          Ulteriori informazioni
      • Partner Technology Alliance
        • Partner Technology Alliance
          Ulteriori informazioni
      • Trova partner Alliance
        • Trova partner Alliance
          Ulteriori informazioni
    • Risorse per i partner
      • Risorse per i partner
        • Risorse per i partner

          Scopri le risorse progettate per accelerare la crescita della tua azienda e migliorare le tue capacità come partner Trend Micro

          Ulteriori informazioni
      • Accesso al portale dei partner
        • Accesso al portale dei partner
          Accesso
      • Campus di Trend
        • Campus di Trend

          Accelera il tuo apprendimento con Trend Campus, una piattaforma di formazione di facile utilizzo che offre una guida tecnica personalizzata

          Ulteriori informazioni
      • Co-vendita
        • Co-vendita

          Accedi a servizi collaborativi progettati per aiutarti a mostrare il valore di Trend Vision One™ e far crescere la tua azienda

          Ulteriori informazioni
      • Diventa partner
        • Diventa partner
          Ulteriori informazioni
    • Trova partner
      • Trova partner

        Trova un partner da cui è possibile acquistare le soluzioni di Trend Micro

        Ulteriori informazioni
  • Azienda
    • Perché Trend Micro
      • Perché Trend Micro
        • Perché Trend Micro
          Ulteriori informazioni
      • Testimonianze dei clienti
        • Testimonianze dei clienti
          Ulteriori informazioni
      • Riconoscimenti di settore
        • Riconoscimenti di settore
          Ulteriori informazioni
      • Alleanze strategiche
        • Alleanze strategiche
          Ulteriori informazioni
    • Confronta Trend Micro
      • Confronta Trend Micro
        • Confronta Trend Micro

          Scopri In che modo Trend supera le prestazioni della concorrenza

          Partiamo
      • vs. CrowdStrike
        • Trend Micro vs. CrowdStrike

          Crowdstrike offre una cybersecurity efficace grazie alla sua piattaforma nativa del cloud, ma i suoi prezzi possono essere eccessivi, soprattutto per le organizzazioni che cercano una scalabilità economica attraverso una vera e propria piattaforma unica

          Partiamo
      • vs. Microsoft
        • Trend Micro vs. Microsoft

          Microsoft offre un livello di protezione fondamentale, ma spesso richiede soluzioni aggiuntive per risolvere completamente i problemi di sicurezza dei clienti

          Partiamo
      • vs. Palo Alto Networks
        • Trend Micro vs. Palo Alto Networks

          Palo Alto Networks offre soluzioni avanzate di cybersecurity, ma navigare nella sua suite completa può essere complesso e sbloccare tutte le funzionalità richiede investimenti significativi.

          Partiamo
    • Su di noi
      • Su di noi
        • Su di noi
          Ulteriori informazioni
      • Trust Center
        • Trust Center
          Ulteriori informazioni
      • Cronologia
        • Cronologia
          Ulteriori informazioni
      • Diversity, equity e inclusione
        • Diversity, equity e inclusione
          Ulteriori informazioni
      • Responsabilità sociale dell’azienda
        • Responsabilità sociale dell’azienda
          Ulteriori informazioni
      • Leadership
        • Leadership
          Ulteriori informazioni
      • Esperti di sicurezza
        • Esperti di sicurezza
          Ulteriori informazioni
      • Formazione sulla sicurezza di Internet e la cybersecurity
        • Formazione sulla sicurezza di Internet e la cybersecurity
          Ulteriori informazioni
      • Informazioni legali
        • Informazioni legali
          Ulteriori informazioni
      • Formula E Racing
        • Formula E Racing
          Ulteriori informazioni
    • Mettiti in contatto con noi
      • Mettiti in contatto con noi
        • Mettiti in contatto con noi
          Ulteriori informazioni
      • Notizie
        • Notizie
          Ulteriori informazioni
      • Eventi
        • Eventi
          Ulteriori informazioni
      • Lavora con noi
        • Lavora con noi
          Ulteriori informazioni
      • Webinar
        • Webinar
          Ulteriori informazioni
  • Versioni di prova gratuite
  • Contatti
Cerchi una soluzione per l'ambiente domestico?
Sotto attacco?
0 Avvisi
Non letto
Tutti
Assistenza
  • Business Support Portal
  • Formazione e certificazione
  • Contatta il supporto
  • Trova un partner per l'assistenza
Risorse
  • AI Security
  • Trend Micro vs. la concorrenza
  • Valutazioni del rischio informatico
  • Che cos'è?
  • Enciclopedia delle minacce
  • Cyber Insurance
  • Glossario dei termini
  • Webinar
Accedi
  • Vision One
  • Assistenza
  • Partner Portal
  • Cloud One
  • Attivazione e gestione dei prodotti
  • Affiliato di riferimento
arrow_back
search
close
  • Enciclopedia delle minacce
  • Network Content Inspection Rules

Network Content Inspection Rules

    Default Rule:  
    Rule IDRule DescriptionConfidence LevelDDI Default RuleNetwork Content Inspection Pattern Release Date
    DDI RULE 5421 APT - BPFDOOR - UDP
    HIGH
    2025/06/26DDI RULE 5421/vinfo/it/threat-encyclopedia/network/ddi-rule-5421
    DDI RULE 5420 APT - BPFDOOR - TCP
    HIGH
    2025/06/19DDI RULE 5420/vinfo/it/threat-encyclopedia/network/ddi-rule-5420
    DDI RULE 5413 CVE-2025-46337 - ADODB SQL INJECTION - HTTP (Response)
    HIGH
    2025/06/10DDI RULE 5413/vinfo/it/threat-encyclopedia/network/ddi-rule-5413
    DDI RULE 5406 ECHARGE COMMAND INJECTION EXPLOIT - HTTP (Response)
    HIGH
    2025/05/29DDI RULE 5406/vinfo/it/threat-encyclopedia/network/ddi-rule-5406
    DDI RULE 5394 CVE-2024-57050 - TPLINK EXPLOIT - HTTP(Response)
    HIGH
    2025/05/13DDI RULE 5394/vinfo/it/threat-encyclopedia/network/ddi-rule-5394
    DDI RULE 5392 CVE-2024-23468 - SOLARWINDS PATH TRAVERSAL - TCP (Request)
    HIGH
    2025/05/07DDI RULE 5392/vinfo/it/threat-encyclopedia/network/ddi-rule-5392
    DDI RULE 5387 CVE-2023-44221 - SONICWALL EXPLOIT COMMAND INJECTION EXPLOIT - HTTP(RESPONSE)
    HIGH
    2025/05/03DDI RULE 5387/vinfo/it/threat-encyclopedia/network/ddi-rule-5387
    DDI RULE 5385 CVE-2021-47667 - ZENDTO RCE - HTTP (Request)
    HIGH
    2025/04/30DDI RULE 5385/vinfo/it/threat-encyclopedia/network/ddi-rule-5385
    DDI RULE 5382 CVE-2025-31324 - SAP NETWEAVER UPLOAD EXPLOIT REQUEST - HTTP(REQUEST)
    HIGH
    2025/04/26DDI RULE 5382/vinfo/it/threat-encyclopedia/network/ddi-rule-5382
    DDI RULE 5377 ROUTER CLEARTEXT PASSWORD DISCLOSURE EXPLOIT - HTTP (Request)
    HIGH
    2025/04/22DDI RULE 5377/vinfo/it/threat-encyclopedia/network/ddi-rule-5377
    DDI RULE 5375 CVE-2024-10188 - LITELLM DOS - HTTP (Request)
    HIGH
    2025/04/16DDI RULE 5375/vinfo/it/threat-encyclopedia/network/ddi-rule-5375
    DDI RULE 5369 IVANTI TRAVERSAL EXPLOIT - HTTP(Response)
    HIGH
    2025/04/15DDI RULE 5369/vinfo/it/threat-encyclopedia/network/ddi-rule-5369
    DDI RULE 5363 CVE-2024-50330 - IVANTI SQL INJECTION - HTTP (Response)
    HIGH
    2025/04/02DDI RULE 5363/vinfo/it/threat-encyclopedia/network/ddi-rule-5363
    DDI RULE 5359 CVE-2018-8639 - Win32k Privilege Escalation Exploit - HTTP (Response)
    HIGH
    2025/03/26DDI RULE 5359/vinfo/it/threat-encyclopedia/network/ddi-rule-5359
    DDI RULE 5353 CVE-2024-45195 - APACHE OFBIZ RCE EXPLOIT - HTTP(Request)
    HIGH
    2025/03/17DDI RULE 5353/vinfo/it/threat-encyclopedia/network/ddi-rule-5353
    DDI RULE 5349 SVCCTL Start Service - SMB2 (Request)
    HIGH
    2025/03/13DDI RULE 5349/vinfo/it/threat-encyclopedia/network/ddi-rule-5349
    DDI RULE 5340 LBLINK COMMAND INJECTION EXPLOIT - HTTP (Request)
    HIGH
    2025/03/05DDI RULE 5340/vinfo/it/threat-encyclopedia/network/ddi-rule-5340
    DDI RULE 5323 CVE-2024-49112 - INTEGER OVERFLOW EXPLOIT - LDAP (Response)
    HIGH
    2025/02/20DDI RULE 5323/vinfo/it/threat-encyclopedia/network/ddi-rule-5323
    DDI RULE 5305 CVE-2024-42327 - Zabbix SQL Injection - HTTP (Response)
    HIGH
    2025/02/18DDI RULE 5305/vinfo/it/threat-encyclopedia/network/ddi-rule-5305
    DDI RULE 5318 CVE-2025-0282 - IVANTI RCE EXPLOIT - HTTP(Request)
    HIGH
    2025/02/17DDI RULE 5318/vinfo/it/threat-encyclopedia/network/ddi-rule-5318
    DDI RULE 5320 CVE-2025-0107 - Palo Alto Networks Expedition Insecure Deserialization Exploit - HTTP (Response)
    HIGH
    2025/02/17DDI RULE 5320/vinfo/it/threat-encyclopedia/network/ddi-rule-5320
    DDI RULE 5316 CVE-2024-37404 - IVANTI RCE EXPLOIT - HTTP (Response)
    HIGH
    2025/02/12DDI RULE 5316/vinfo/it/threat-encyclopedia/network/ddi-rule-5316
    DDI RULE 5314 ADCS Suspicious use of Certificate - Kerberos (Request)
    HIGH
    2025/02/11DDI RULE 5314/vinfo/it/threat-encyclopedia/network/ddi-rule-5314
    DDI RULE 5310 CVE-2024-52047 - DIRECTORY TRAVERSAL EXPLOIT - HTTP (Request)
    HIGH
    2025/02/06DDI RULE 5310/vinfo/it/threat-encyclopedia/network/ddi-rule-5310
    DDI RULE 5312 CVE-2024-40711 - Veeam Backup & Replication Remote Command Execution Exploit - HTTP (Response)
    HIGH
    2025/02/06DDI RULE 5312/vinfo/it/threat-encyclopedia/network/ddi-rule-5312
    DDI RULE 5303 CVE-2024-51378 - CYBERPANEL RCE EXPLOIT - HTTP (Request)
    HIGH
    2025/02/05DDI RULE 5303/vinfo/it/threat-encyclopedia/network/ddi-rule-5303
    DDI RULE 5311 CVE-2022-22947 - SPRINGCLOUD RCE EXPLOIT - HTTP (Request)
    HIGH
    2025/02/05DDI RULE 5311/vinfo/it/threat-encyclopedia/network/ddi-rule-5311
    DDI RULE 5292 CVE-2024-47575 - FORTIMANAGER RCE EXPLOIT - HTTP (Response)
    HIGH
    2025/02/04DDI RULE 5292/vinfo/it/threat-encyclopedia/network/ddi-rule-5292
    DDI RULE 5304 CVE-2024-12828 - WEBMIN RCE EXPLOIT - HTTP (Response)
    HIGH
    2025/01/30DDI RULE 5304/vinfo/it/threat-encyclopedia/network/ddi-rule-5304
    DDI RULE 5306 CVE-2024-53691 - QNAP RCE - HTTP (Request)
    HIGH
    2025/01/30DDI RULE 5306/vinfo/it/threat-encyclopedia/network/ddi-rule-5306
    DDI RULE 5307 CVE-2024-50388 - QNAP BACKUP EXPLOIT - HTTP(Request)
    HIGH
    2025/01/30DDI RULE 5307/vinfo/it/threat-encyclopedia/network/ddi-rule-5307
    DDI RULE 5302 CVE-2024-8963 - IVANTI AUTH BYPASS EXPLOIT - HTTP (Response)
    HIGH
    2025/01/24DDI RULE 5302/vinfo/it/threat-encyclopedia/network/ddi-rule-5302
    DDI RULE 5300 CVE-2024-29847 - IVANTI RCE EXPLOIT - TCP (Request)
    HIGH
    2025/01/22DDI RULE 5300/vinfo/it/threat-encyclopedia/network/ddi-rule-5300
    DDI RULE 5301 CVE-2024-50603 - AVIATRIX COMMAND INJECTION - HTTP (Request)
    HIGH
    2025/01/21DDI RULE 5301/vinfo/it/threat-encyclopedia/network/ddi-rule-5301
    DDI RULE 5246 Entropy Encoded Cookie Sensor - HTTP (Request)
    LOW
    2025/01/20DDI RULE 5246/vinfo/it/threat-encyclopedia/network/ddi-rule-5246
    DDI RULE 5247 Base64 Encoded Cookie Sensor - HTTP (Request)
    LOW
    2025/01/20DDI RULE 5247/vinfo/it/threat-encyclopedia/network/ddi-rule-5247
    DDI RULE 5299 HTTP Websocket Connection to External Server (Request)
    LOW
    2025/01/16DDI RULE 5299/vinfo/it/threat-encyclopedia/network/ddi-rule-5299
    DDI RULE 1268 Reverse HTTPS Meterpreter detected - Variant 2
    HIGH
    2025/01/15DDI RULE 1268/vinfo/it/threat-encyclopedia/network/ddi-rule-1268
    DDI RULE 5298 CVE-2024-5011 - WHATSUP GOLD EXPLOIT - HTTP (Request)
    HIGH
    2025/01/15DDI RULE 5298/vinfo/it/threat-encyclopedia/network/ddi-rule-5298
    DDI RULE 2744 OMRON FINS UDP Read Controller Attempt NSE - UDP (Request)
    LOW
    2025/01/13DDI RULE 2744/vinfo/it/threat-encyclopedia/network/ddi-rule-2744
    DDI RULE 5294 CVE-2024-38856 - OFBIZ AUTHBYPASS EXPLOIT - HTTP (Response)
    HIGH
    2025/01/08DDI RULE 5294/vinfo/it/threat-encyclopedia/network/ddi-rule-5294
    DDI RULE 5289 CVE-2024-49122 - MSMQ RCE EXPLOIT - TCP (Response)
    HIGH
    2025/01/07DDI RULE 5289/vinfo/it/threat-encyclopedia/network/ddi-rule-5289
    DDI RULE 5290 CVE-2024-9464 - PaloAlto Command Injection Exploit - HTTP (Request)
    HIGH
    2025/01/06DDI RULE 5290/vinfo/it/threat-encyclopedia/network/ddi-rule-5290
    DDI RULE 5297 CVE-2024-49113 - WINDOWS LDAP DOS EXPLOIT - CLDAP(RESPONSE)
    HIGH
    2025/01/06DDI RULE 5297/vinfo/it/threat-encyclopedia/network/ddi-rule-5297
    DDI RULE 5295 CVE-2024-50623 - CLEO DIRECTORY TRAVERSAL - HTTP (Request)
    HIGH
    2025/01/02DDI RULE 5295/vinfo/it/threat-encyclopedia/network/ddi-rule-5295
    DDI RULE 5288 CVE-2024-46938 - Sitecore Directory Traversal Exploit - HTTP (Response)
    HIGH
    2024/12/19DDI RULE 5288/vinfo/it/threat-encyclopedia/network/ddi-rule-5288
    DDI RULE 5291 CVE-2024-25153 - Fortra FileCatalyst Workflow Directory Traversal Exploit - HTTP (Response)
    HIGH
    2024/12/19DDI RULE 5291/vinfo/it/threat-encyclopedia/network/ddi-rule-5291
    DDI RULE 5293 CVE-2024-11320 - Pandora Remote Command Execution Exploit - HTTP (Response)
    HIGH
    2024/12/19DDI RULE 5293/vinfo/it/threat-encyclopedia/network/ddi-rule-5293
    DDI RULE 4594 COBALTSTRIKE - HTTP(REQUEST) - Variant 3
    HIGH
    2024/12/11DDI RULE 4594/vinfo/it/threat-encyclopedia/network/ddi-rule-4594
    DDI RULE 4861 COBEACON - DNS (Response) - Variant 3
    HIGH
    2024/12/11DDI RULE 4861/vinfo/it/threat-encyclopedia/network/ddi-rule-4861
    DDI RULE 5253 CVE-2024-29830 - IVANTI SQL INJECTION EXPLOIT - HTTP(REQUEST)
    HIGH
    2024/12/11DDI RULE 5253/vinfo/it/threat-encyclopedia/network/ddi-rule-5253
    DDI RULE 5281 AD File and Directory Discovery - SMB2 (Request)
    MEDIUM
    2024/12/11DDI RULE 5281/vinfo/it/threat-encyclopedia/network/ddi-rule-5281
    DDI RULE 5284 CVE-2024-34051 - DOLIBARR AC EXECUTION EXPLOIT - HTTP(REQUEST)
    HIGH
    2024/12/11DDI RULE 5284/vinfo/it/threat-encyclopedia/network/ddi-rule-5284
    DDI RULE 5287 Active Directory Certificate Services Template Discovery- LDAP (Request)
    HIGH
    2024/12/11DDI RULE 5287/vinfo/it/threat-encyclopedia/network/ddi-rule-5287
    DDI RULE 5283 CVE-2024-9264 - Grafana SQL Injection Exploit - HTTP (Response)
    HIGH
    2024/12/10DDI RULE 5283/vinfo/it/threat-encyclopedia/network/ddi-rule-5283
    DDI RULE 5286 Possible Discovery Using NETSHAREENUM API - SMB2 (Request)
    HIGH
    2024/12/10DDI RULE 5286/vinfo/it/threat-encyclopedia/network/ddi-rule-5286
    DDI RULE 4396 CVE-2020-1967 - Signature Algorithms Cert Denial of Service - HTTPS (Request)
    MEDIUM
    2024/12/09DDI RULE 4396/vinfo/it/threat-encyclopedia/network/ddi-rule-4396
    DDI RULE 5282 CVE-2024-43451 - WINDOWS NTLM RELAY EXPLOIT - HTTP (Response)
    HIGH
    2024/12/09DDI RULE 5282/vinfo/it/threat-encyclopedia/network/ddi-rule-5282
    DDI RULE 5285 CVE-2024-1884 - PAPERCUT SSRF EXPLOIT - HTTP(REQUEST)
    HIGH
    2024/12/09DDI RULE 5285/vinfo/it/threat-encyclopedia/network/ddi-rule-5285
    DDI RULE 5279 CVE-2024-47525 - LIBRENMS XSS EXPLOIT - HTTP(REQUEST)
    HIGH
    2024/12/04DDI RULE 5279/vinfo/it/threat-encyclopedia/network/ddi-rule-5279
    DDI RULE 5280 CVE-2024-42008 - Roundcube Information Disclosure Exploit - HTTP (Response)
    HIGH
    2024/12/03DDI RULE 5280/vinfo/it/threat-encyclopedia/network/ddi-rule-5280
    DDI RULE 5232 CVE-2024-45519 - ZIMBRA RCE EXPLOIT - SMTP (REQUEST)
    HIGH
    2024/12/02DDI RULE 5232/vinfo/it/threat-encyclopedia/network/ddi-rule-5232
    DDI RULE 5276 CVE-2024-5010 - WHATSUP GOLD EXPLOIT - HTTP(REQUEST)
    HIGH
    2024/12/02DDI RULE 5276/vinfo/it/threat-encyclopedia/network/ddi-rule-5276
    DDI RULE 5278 CVE-2024-0012 - PALO ALTO AUTH BYPASS - HTTP (Request)
    HIGH
    2024/11/28DDI RULE 5278/vinfo/it/threat-encyclopedia/network/ddi-rule-5278
    DDI RULE 5267 COVENANT Custom Profile - HTTP (Response) - Variant 2
    HIGH
    2024/11/27DDI RULE 5267/vinfo/it/threat-encyclopedia/network/ddi-rule-5267
    DDI RULE 5274 Covenant Default Named Pipe - SMB2 (Request)
    HIGH
    2024/11/26DDI RULE 5274/vinfo/it/threat-encyclopedia/network/ddi-rule-5274
    DDI RULE 5269 SALITY C2 - TCP (REQUEST)
    HIGH
    2024/11/21DDI RULE 5269/vinfo/it/threat-encyclopedia/network/ddi-rule-5269
    DDI RULE 5271 CVE-2024-43572 - Microsoft Windows Management Console RCE Exploit - HTTP (Response)
    HIGH
    2024/11/21DDI RULE 5271/vinfo/it/threat-encyclopedia/network/ddi-rule-5271
    DDI RULE 5245 CVE-2024-6457 - WORDPRESS EXPLOIT - HTTP (Request)
    HIGH
    2024/11/19DDI RULE 5245/vinfo/it/threat-encyclopedia/network/ddi-rule-5245
    DDI RULE 5264 CVE-2024-51567 - CYBERPANEL RCE EXPLOIT - HTTP (Request)
    HIGH
    2024/11/19DDI RULE 5264/vinfo/it/threat-encyclopedia/network/ddi-rule-5264
    DDI RULE 5268 CVE-2024-7591 - Progress Kemp LoadMaster Command Injection Exploit - HTTP (Request)
    HIGH
    2024/11/19DDI RULE 5268/vinfo/it/threat-encyclopedia/network/ddi-rule-5268
    DDI RULE 5256 COVENANT Default - HTTP (Response)
    HIGH
    2024/11/14DDI RULE 5256/vinfo/it/threat-encyclopedia/network/ddi-rule-5256
    DDI RULE 5258 CVE-2024-9465 - PALOALTO EXPEDITION EXPLOIT - HTTP (Response)
    HIGH
    2024/11/14DDI RULE 5258/vinfo/it/threat-encyclopedia/network/ddi-rule-5258
    DDI RULE 5265 CVE-2024-40711 - VEEAM BACKUP RCE EXPLOIT - TCP (Request)
    HIGH
    2024/11/14DDI RULE 5265/vinfo/it/threat-encyclopedia/network/ddi-rule-5265
    DDI RULE 5263 CVE-2024-41874 - ADOBE COLDFUSION RCE EXPLOIT - HTTP (Response)
    HIGH
    2024/11/13DDI RULE 5263/vinfo/it/threat-encyclopedia/network/ddi-rule-5263
    DDI RULE 5262 CoreWarrior Exfiltration - HTTP (Request)
    HIGH
    2024/11/12DDI RULE 5262/vinfo/it/threat-encyclopedia/network/ddi-rule-5262
    DDI RULE 5259 FAKEWIN - HTTP (Request)
    HIGH
    2024/11/11DDI RULE 5259/vinfo/it/threat-encyclopedia/network/ddi-rule-5259
    DDI RULE 5260 RCSHELL BACKDOOR - HTTP (Request)
    HIGH
    2024/11/11DDI RULE 5260/vinfo/it/threat-encyclopedia/network/ddi-rule-5260
    DDI RULE 5261 HORUS PROTECTOR C2 - TCP (Response)
    HIGH
    2024/11/11DDI RULE 5261/vinfo/it/threat-encyclopedia/network/ddi-rule-5261
    DDI RULE 5257 CVE-2024-28988 - SOLARWINDS RCE EXPLOIT - HTTP (Response)
    HIGH
    2024/11/07DDI RULE 5257/vinfo/it/threat-encyclopedia/network/ddi-rule-5257
    DDI RULE 4219 GHOSTMINER - HTTP (Request)
    HIGH
    2024/11/06DDI RULE 4219/vinfo/it/threat-encyclopedia/network/ddi-rule-4219
    DDI RULE 4484 GOLDENSPY - HTTP (REQUEST)
    HIGH
    2024/11/06DDI RULE 4484/vinfo/it/threat-encyclopedia/network/ddi-rule-4484
    DDI RULE 4572 GLUPTEBA - HTTP (REQUEST)
    HIGH
    2024/11/06DDI RULE 4572/vinfo/it/threat-encyclopedia/network/ddi-rule-4572
    DDI RULE 5081 CVE-2024-36401 - GEOSERVER EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/11/06DDI RULE 5081/vinfo/it/threat-encyclopedia/network/ddi-rule-5081
    DDI RULE 5139 PYC Download - HTTP (Response)
    LOW
    2024/11/05DDI RULE 5139/vinfo/it/threat-encyclopedia/network/ddi-rule-5139
    DDI RULE 5140 Python Download - HTTP (Response)
    LOW
    2024/11/05DDI RULE 5140/vinfo/it/threat-encyclopedia/network/ddi-rule-5140
    DDI RULE 1770 GHOLE - HTTP (Request)
    HIGH
    2024/11/04DDI RULE 1770/vinfo/it/threat-encyclopedia/network/ddi-rule-1770
    DDI RULE 5254 Possible Domain Controller List Discovery - DCERPC (Request)
    HIGH
    2024/11/04DDI RULE 5254/vinfo/it/threat-encyclopedia/network/ddi-rule-5254
    DDI RULE 5243 WebDAV Successful File Download - HTTP (Response)
    HIGH
    2024/10/29DDI RULE 5243/vinfo/it/threat-encyclopedia/network/ddi-rule-5243
    DDI RULE 5244 WebDAV Unsuccessful File Download - HTTP (Response)
    HIGH
    2024/10/29DDI RULE 5244/vinfo/it/threat-encyclopedia/network/ddi-rule-5244
    DDI RULE 5249 KeyLogEXE Exfiltration - HTTP (Request)
    HIGH
    2024/10/28DDI RULE 5249/vinfo/it/threat-encyclopedia/network/ddi-rule-5249
    DDI RULE 5248 URIVAR EXFILTRATION - HTTP(REQUEST)
    LOW
    2024/10/24DDI RULE 5248/vinfo/it/threat-encyclopedia/network/ddi-rule-5248
    DDI RULE 5250 C2 SHELLCODE Transfer - HTTP (Response)
    LOW
    2024/10/24DDI RULE 5250/vinfo/it/threat-encyclopedia/network/ddi-rule-5250
    DDI RULE 5251 REMCOS DOWNLOADER - HTTP (Request)
    HIGH
    2024/10/24DDI RULE 5251/vinfo/it/threat-encyclopedia/network/ddi-rule-5251
    DDI RULE 5252 CONOLEATHLOADER - HTTP (Request)
    HIGH
    2024/10/24DDI RULE 5252/vinfo/it/threat-encyclopedia/network/ddi-rule-5252
    DDI RULE 1886 Data Exfiltration - DNS (Response)
    LOW
    2024/10/22DDI RULE 1886/vinfo/it/threat-encyclopedia/network/ddi-rule-1886
    DDI RULE 5238 CVE-2024-32766 - PRIVWIZARD INJECTION EXPLOIT - HTTP (Request)
    HIGH
    2024/10/22DDI RULE 5238/vinfo/it/threat-encyclopedia/network/ddi-rule-5238
    DDI RULE 5240 CVE-2024-5932 - WordPress RCE Exploit - HTTP (Request)
    HIGH
    2024/10/17DDI RULE 5240/vinfo/it/threat-encyclopedia/network/ddi-rule-5240
    DDI RULE 5231 CVE-2024-32842 - Ivanti Endpoint Manager SQL Injection Exploit - HTTP (Response)
    HIGH
    2024/10/16DDI RULE 5231/vinfo/it/threat-encyclopedia/network/ddi-rule-5231
    DDI RULE 5242 CVE-2024-5932 - GIVEWP RCE EXPLOIT - HTTP (Request)
    HIGH
    2024/10/16DDI RULE 5242/vinfo/it/threat-encyclopedia/network/ddi-rule-5242
    DDI RULE 5230 CVE-2024-32845 - Ivanti Endpoint Manager SQL Injection Exploit - HTTP (Response)
    HIGH
    2024/10/15DDI RULE 5230/vinfo/it/threat-encyclopedia/network/ddi-rule-5230
    DDI RULE 5241 CVE-2024-37397 - Ivanti EPM Improper Restriction of XML External Entity Exploit - HTTP (Response)
    HIGH
    2024/10/15DDI RULE 5241/vinfo/it/threat-encyclopedia/network/ddi-rule-5241
    DDI RULE 5239 SYSTEMBC Shellcode Download - HTTP (Response)
    HIGH
    2024/10/14DDI RULE 5239/vinfo/it/threat-encyclopedia/network/ddi-rule-5239
    DDI RULE 5229 Advanced Port Scanner - HTTP (Request)
    HIGH
    2024/10/10DDI RULE 5229/vinfo/it/threat-encyclopedia/network/ddi-rule-5229
    DDI RULE 5233 CVE-2024-32846 - IVANTI SQL INJECTION EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/10/10DDI RULE 5233/vinfo/it/threat-encyclopedia/network/ddi-rule-5233
    DDI RULE 5234 CVE-2024-32843 - IVANTI SQL INJECTION EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/10/10DDI RULE 5234/vinfo/it/threat-encyclopedia/network/ddi-rule-5234
    DDI RULE 5235 CVE-2024-34779 - IVANTI SQL INJECTION EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/10/10DDI RULE 5235/vinfo/it/threat-encyclopedia/network/ddi-rule-5235
    DDI RULE 5236 CVE-2024-34785 - IVANTI SQL INJECTION EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/10/10DDI RULE 5236/vinfo/it/threat-encyclopedia/network/ddi-rule-5236
    DDI RULE 5237 SYSTEMBC C2 - HTTP (Request)
    HIGH
    2024/10/10DDI RULE 5237/vinfo/it/threat-encyclopedia/network/ddi-rule-5237
    DDI RULE 5227 VALLEYRAT C2 - TCP (Response)
    HIGH
    2024/10/09DDI RULE 5227/vinfo/it/threat-encyclopedia/network/ddi-rule-5227
    DDI RULE 5228 Advanced IP Scanner - HTTP (Request)
    HIGH
    2024/10/09DDI RULE 5228/vinfo/it/threat-encyclopedia/network/ddi-rule-5228
    DDI RULE 5225 ONCESVC C2 - HTTP (Response)
    HIGH
    2024/10/08DDI RULE 5225/vinfo/it/threat-encyclopedia/network/ddi-rule-5225
    DDI RULE 5226 CVE-2024-6497 - SQUIRLLY EXPLOIT - HTTP (Request)
    HIGH
    2024/10/08DDI RULE 5226/vinfo/it/threat-encyclopedia/network/ddi-rule-5226
    DDI RULE 5221 CVE-2024-47177 - CUPS PRINTING RCE EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/10/03DDI RULE 5221/vinfo/it/threat-encyclopedia/network/ddi-rule-5221
    DDI RULE 5223 LUMMAC - HTTP (Request)
    HIGH
    2024/10/03DDI RULE 5223/vinfo/it/threat-encyclopedia/network/ddi-rule-5223
    DDI RULE 5217 CVE-2024-8190 - Ivanti Cloud Service Appliance Authenticated Command Injection Exploit - HTTP (Response)
    HIGH
    2024/10/02DDI RULE 5217/vinfo/it/threat-encyclopedia/network/ddi-rule-5217
    DDI RULE 5222 CVE-2024-2876 - WORDPRESS SQL INJECTION EXPLOIT - HTTP (Request)
    HIGH
    2024/10/02DDI RULE 5222/vinfo/it/threat-encyclopedia/network/ddi-rule-5222
    DDI RULE 5218 CVE-2020-8599 - Trend Micro Apex One and OfficeScan Directory Traversal Exploit - HTTP (Request)
    HIGH
    2024/10/01DDI RULE 5218/vinfo/it/threat-encyclopedia/network/ddi-rule-5218
    DDI RULE 5219 CVE-2024-38077 - MS RDL RCE EXPLOIT - DCERPC (Request)
    HIGH
    2024/10/01DDI RULE 5219/vinfo/it/threat-encyclopedia/network/ddi-rule-5219
    DDI RULE 5220 CVE-2024-6670 - WhatsUp SQL Injection Exploit - HTTP (Response)
    HIGH
    2024/10/01DDI RULE 5220/vinfo/it/threat-encyclopedia/network/ddi-rule-5220
    DDI RULE 5216 Possible Generic Database Query - MySQL (Request)
    MEDIUM
    2024/09/26DDI RULE 5216/vinfo/it/threat-encyclopedia/network/ddi-rule-5216
    DDI RULE 5206 Remote Access Tool VNC - VNC (Response)
    HIGH
    2024/09/23DDI RULE 5206/vinfo/it/threat-encyclopedia/network/ddi-rule-5206
    DDI RULE 5207 Remote Access Tool RealVNC - VNC (Response)
    HIGH
    2024/09/23DDI RULE 5207/vinfo/it/threat-encyclopedia/network/ddi-rule-5207
    DDI RULE 5208 Remote Access Tool TightVNC - VNC (Response)
    HIGH
    2024/09/23DDI RULE 5208/vinfo/it/threat-encyclopedia/network/ddi-rule-5208
    DDI RULE 5209 Remote Access Tool UltraVNC - VNC (Response)
    HIGH
    2024/09/23DDI RULE 5209/vinfo/it/threat-encyclopedia/network/ddi-rule-5209
    DDI RULE 5214 CVE-2024-5505 - NETGEAR TRAVERSAL EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/09/17DDI RULE 5214/vinfo/it/threat-encyclopedia/network/ddi-rule-5214
    DDI RULE 5215 CVE-2024-43461 - MSHTML SPOOFING EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/09/17DDI RULE 5215/vinfo/it/threat-encyclopedia/network/ddi-rule-5215
    DDI RULE 5082 CVE-2024-32113 - Apache OFBiz Directory Traversal Exploit - HTTP (Request)
    HIGH
    2024/09/16DDI RULE 5082/vinfo/it/threat-encyclopedia/network/ddi-rule-5082
    DDI RULE 5212 CVE-2023-51364 - QNAP RCE EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/09/12DDI RULE 5212/vinfo/it/threat-encyclopedia/network/ddi-rule-5212
    DDI RULE 5213 WebP Image Sensor - HTTP (Response)
    HIGH
    2024/09/12DDI RULE 5213/vinfo/it/threat-encyclopedia/network/ddi-rule-5213
    DDI RULE 5211 CVE-2023-38205 - Adobe ColdFusion Policy Bypass Exploit - HTTP (Request)
    HIGH
    2024/09/11DDI RULE 5211/vinfo/it/threat-encyclopedia/network/ddi-rule-5211
    DDI RULE 5210 Metasploit Web Delivery through PowerShell - HTTP (Response)
    MEDIUM
    2024/09/10DDI RULE 5210/vinfo/it/threat-encyclopedia/network/ddi-rule-5210
    DDI RULE 2793 APT - WINNTI - HTTP (Response)
    HIGH
    2024/09/09DDI RULE 2793/vinfo/it/threat-encyclopedia/network/ddi-rule-2793
    DDI RULE 5203 CVE-2024-5721 - LOGSIGN RCE EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/09/05DDI RULE 5203/vinfo/it/threat-encyclopedia/network/ddi-rule-5203
    DDI RULE 5204 CVE-2024-7928 - FASTADMIN TRAVERSAL EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/09/05DDI RULE 5204/vinfo/it/threat-encyclopedia/network/ddi-rule-5204
    DDI RULE 5205 CVE-2024-29826 - IVANTI ENDPOINT RCE EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/09/05DDI RULE 5205/vinfo/it/threat-encyclopedia/network/ddi-rule-5205
    DDI RULE 5097 CVE-2023-27532 - Veeam Backup and Replication Backup Service Authentication Bypass Exploit - TCP (Request)
    HIGH
    2024/09/04DDI RULE 5097/vinfo/it/threat-encyclopedia/network/ddi-rule-5097
    DDI RULE 5200 CVE-2024-38652 - IVANTI TRAVERSAL EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/09/04DDI RULE 5200/vinfo/it/threat-encyclopedia/network/ddi-rule-5200
    DDI RULE 5202 MAGICRAT EXFIL - HTTP(REQUEST)
    HIGH
    2024/09/04DDI RULE 5202/vinfo/it/threat-encyclopedia/network/ddi-rule-5202
    DDI RULE 4345 EMOTET - HTTP (Request) - Variant 7
    HIGH
    2024/09/03DDI RULE 4345/vinfo/it/threat-encyclopedia/network/ddi-rule-4345
    DDI RULE 5098 JUPITERRAT - HTTP (REQUEST)
    HIGH
    2024/08/29DDI RULE 5098/vinfo/it/threat-encyclopedia/network/ddi-rule-5098
    DDI RULE 5099 FAKEBAT DOWNLOADER - HTTP(REQUEST)
    HIGH
    2024/08/29DDI RULE 5099/vinfo/it/threat-encyclopedia/network/ddi-rule-5099
    DDI RULE 5090 CVE-2021-26858 - Possible MS Exchange SSRF Exploit - HTTP (Response)
    LOW
    2024/08/28DDI RULE 5090/vinfo/it/threat-encyclopedia/network/ddi-rule-5090
    DDI RULE 5096 ZOMBIEDROP - HTTP (REQUEST)
    HIGH
    2024/08/27DDI RULE 5096/vinfo/it/threat-encyclopedia/network/ddi-rule-5096
    DDI RULE 5075 CVE-2024-49606 - TINYPROXY RCE EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/08/22DDI RULE 5075/vinfo/it/threat-encyclopedia/network/ddi-rule-5075
    DDI RULE 5095 CVE-2024-4885 - WHATSUP GOLD TRAVERSAL EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/08/22DDI RULE 5095/vinfo/it/threat-encyclopedia/network/ddi-rule-5095
    DDI RULE 5092 CVE-2024-7120 - RAISECOM COMMAND INJECTION EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/08/20DDI RULE 5092/vinfo/it/threat-encyclopedia/network/ddi-rule-5092
    DDI RULE 5093 Prometei C2 - HTTP (Request)
    HIGH
    2024/08/20DDI RULE 5093/vinfo/it/threat-encyclopedia/network/ddi-rule-5093
    DDI RULE 5094 Possible STEALBIT Exfiltration - HTTP (Request)
    MEDIUM
    2024/08/20DDI RULE 5094/vinfo/it/threat-encyclopedia/network/ddi-rule-5094
    DDI RULE 5091 RUTHENS ENCRYPTION - SMB2 (REQUEST)
    HIGH
    2024/08/19DDI RULE 5091/vinfo/it/threat-encyclopedia/network/ddi-rule-5091
    DDI RULE 5087 DAMEWARE RCE EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/08/15DDI RULE 5087/vinfo/it/threat-encyclopedia/network/ddi-rule-5087
    DDI RULE 5088 Possible Faker Generated Self-Signed Certificate - HTTPS
    MEDIUM
    2024/08/14DDI RULE 5088/vinfo/it/threat-encyclopedia/network/ddi-rule-5088
    DDI RULE 5089 COBEACON Default Named Pipe - SMB2 (Request) - Variant 2
    MEDIUM
    2024/08/14DDI RULE 5089/vinfo/it/threat-encyclopedia/network/ddi-rule-5089
    DDI RULE 5085 CVE-2024-5008 - WHATSUP GOLD RCE EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/08/13DDI RULE 5085/vinfo/it/threat-encyclopedia/network/ddi-rule-5085
    DDI RULE 5086 CVE-2019-0708 - Microsoft Windows Remote Desktop Services Remote Code Execution Exploit - TCP (Request)
    HIGH
    2024/08/13DDI RULE 5086/vinfo/it/threat-encyclopedia/network/ddi-rule-5086
    DDI RULE 5079 CVE-2023-42000 - Arcserve Unified Data Protection Path Traversal Exploit - HTTP (Request)
    HIGH
    2024/08/12DDI RULE 5079/vinfo/it/threat-encyclopedia/network/ddi-rule-5079
    DDI RULE 5084 CVE-2024-4883 - Progress WhatsUp Gold Traversal Exploit - TCP (Request)
    HIGH
    2024/08/12DDI RULE 5084/vinfo/it/threat-encyclopedia/network/ddi-rule-5084
    DDI RULE 5072 ADRECON QUERY - LDAP(Request)
    LOW
    2024/08/09DDI RULE 5072/vinfo/it/threat-encyclopedia/network/ddi-rule-5072
    DDI RULE 5083 CVE-2024-38856 - APACHE OFBIZ RCE EXPLOIT - HTTP (Request)
    HIGH
    2024/08/09DDI RULE 5083/vinfo/it/threat-encyclopedia/network/ddi-rule-5083
    DDI RULE 5077 CVE-2024-2863 - LG LED Directory Traversal Exploit - HTTP (Request)
    HIGH
    2024/08/05DDI RULE 5077/vinfo/it/threat-encyclopedia/network/ddi-rule-5077
    DDI RULE 5078 CVE-2024-36991 - Splunk Directory Traversal Exploit - HTTP (Response)
    HIGH
    2024/08/05DDI RULE 5078/vinfo/it/threat-encyclopedia/network/ddi-rule-5078
    DDI RULE 5074 CVE-2024-5015 - WHATSUP SSRF EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/08/01DDI RULE 5074/vinfo/it/threat-encyclopedia/network/ddi-rule-5074
    DDI RULE 5076 CVE-2024-4879 - ServiceNow Template Injection Exploit - HTTP (Response)
    HIGH
    2024/08/01DDI RULE 5076/vinfo/it/threat-encyclopedia/network/ddi-rule-5076
    DDI RULE 4886 TRUEBOT - HTTP (REQUEST) - Variant 2
    HIGH
    2024/07/31DDI RULE 4886/vinfo/it/threat-encyclopedia/network/ddi-rule-4886
    DDI RULE 5073 CVE-2024-38112 - MSHTML RCE EXPLOIT - SMB2 (REQUEST)
    HIGH
    2024/07/31DDI RULE 5073/vinfo/it/threat-encyclopedia/network/ddi-rule-5073
    DDI RULE 5063 CVE-2024-5806 - MOVEit Authentication Bypass Exploit - HTTP(Request)
    HIGH
    2024/07/29DDI RULE 5063/vinfo/it/threat-encyclopedia/network/ddi-rule-5063
    DDI RULE 5067 CVE-2024-4358 - TELERIK AUTHBYPASS EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/07/25DDI RULE 5067/vinfo/it/threat-encyclopedia/network/ddi-rule-5067
    DDI RULE 5068 CVE-2024-37389 - APACHE NIFI EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/07/25DDI RULE 5068/vinfo/it/threat-encyclopedia/network/ddi-rule-5068
    DDI RULE 5069 PHP DEV EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/07/25DDI RULE 5069/vinfo/it/threat-encyclopedia/network/ddi-rule-5069
    DDI RULE 5070 CVE-2024-27348 - APACHE HUGEGRAPH RCE EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/07/25DDI RULE 5070/vinfo/it/threat-encyclopedia/network/ddi-rule-5070
    DDI RULE 5071 RC4 Encryption in Pre-Authentication - Kerberos (Request)
    MEDIUM
    2024/07/25DDI RULE 5071/vinfo/it/threat-encyclopedia/network/ddi-rule-5071
    DDI RULE 5064 CVE-2024-38112 - MSHTML RCE EXPLOIT - HTTP (RESPONSE)
    HIGH
    2024/07/24DDI RULE 5064/vinfo/it/threat-encyclopedia/network/ddi-rule-5064
    DDI RULE 5065 CVE-2024-28995 - DIRECTORY TRAVERSAL EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/07/24DDI RULE 5065/vinfo/it/threat-encyclopedia/network/ddi-rule-5065
    DDI RULE 5066 CVE-2024-4040 - CRUSHFTP RCE EXPLOIT - HTTP (REQUEST)
    HIGH
    2024/07/24DDI RULE 5066/vinfo/it/threat-encyclopedia/network/ddi-rule-5066
    DDI RULE 4682 MULTIPLE LATERAL MOVEMENT - SMB2(REQUEST)
    LOW
    2024/07/23DDI RULE 4682/vinfo/it/threat-encyclopedia/network/ddi-rule-4682
    DDI RULE 5052 CVE-2024-0769 - D-Link Directory Traversal Exploit - HTTP (Response)
    HIGH
    2024/07/18DDI RULE 5052/vinfo/it/threat-encyclopedia/network/ddi-rule-5052
    DDI RULE 5059 POSSIBLE KIMSUKY C2 - HTTP (Request)
    MEDIUM
    2024/07/18DDI RULE 5059/vinfo/it/threat-encyclopedia/network/ddi-rule-5059
    DDI RULE 5061 CVE-2024-21683 - Atlassian Confluence Server RCE Exploit - HTTP (Request)
    HIGH
    2024/07/17DDI RULE 5061/vinfo/it/threat-encyclopedia/network/ddi-rule-5061
    DDI RULE 5027 Telegram Bot API Sensor - HTTP (Response)
    MEDIUM
    2024/07/16DDI RULE 5027/vinfo/it/threat-encyclopedia/network/ddi-rule-5027
    DDI RULE 5057 PRIVATELOADER C2 - HTTP (Request)
    HIGH
    2024/07/16DDI RULE 5057/vinfo/it/threat-encyclopedia/network/ddi-rule-5057
    DDI RULE 5060 HNAP RCE EXPLOIT - HTTP (Request)
    HIGH
    2024/07/16DDI RULE 5060/vinfo/it/threat-encyclopedia/network/ddi-rule-5060
    DDI RULE 5062 CVE-2024-23692 - Rejetto HTTP File Server Command Injection Exploit - HTTP (Response)
    HIGH
    2024/07/16DDI RULE 5062/vinfo/it/threat-encyclopedia/network/ddi-rule-5062
    DDI RULE 5053 HTA File Download Root Directory Sensor- HTTP(RESPONSE)
    HIGH
    2024/07/15DDI RULE 5053/vinfo/it/threat-encyclopedia/network/ddi-rule-5053
    DDI RULE 5054 HTA File Download Sub Root Directory Sensor - HTTP(RESPONSE)
    MEDIUM
    2024/07/15DDI RULE 5054/vinfo/it/threat-encyclopedia/network/ddi-rule-5054
    DDI RULE 5055 SH File Download Root Directory Sensor- HTTP(RESPONSE)
    HIGH
    2024/07/15DDI RULE 5055/vinfo/it/threat-encyclopedia/network/ddi-rule-5055
    DDI RULE 5056 SH File Download Sub Root Directory Sensor - HTTP(RESPONSE)
    MEDIUM
    2024/07/15DDI RULE 5056/vinfo/it/threat-encyclopedia/network/ddi-rule-5056
    DDI RULE 5058 KOI LOADER C2 - HTTP (Request)
    HIGH
    2024/07/15DDI RULE 5058/vinfo/it/threat-encyclopedia/network/ddi-rule-5058
    DDI RULE 5047 CVE-2021-20837 - Movable Type XMLRPC Command Injection Exploit - HTTP (Response)
    HIGH
    2024/07/11DDI RULE 5047/vinfo/it/threat-encyclopedia/network/ddi-rule-5047
    DDI RULE 5050 ISO File Download Sensor - HTTP (Response)
    LOW
    2024/07/11DDI RULE 5050/vinfo/it/threat-encyclopedia/network/ddi-rule-5050
    DDI RULE 5049 APT - DARKPINK Exfiltration - SMTP (Request)
    MEDIUM
    2024/07/10DDI RULE 5049/vinfo/it/threat-encyclopedia/network/ddi-rule-5049
    DDI RULE 5051 AMADEY C2 - HTTP (Request)
    HIGH
    2024/07/09DDI RULE 5051/vinfo/it/threat-encyclopedia/network/ddi-rule-5051
    DDI RULE 4449 Remote Service execution through SMB2 SVCCTL detected - Variant 3
    HIGH
    2024/07/05DDI RULE 4449/vinfo/it/threat-encyclopedia/network/ddi-rule-4449
    DDI RULE 5048 METASPLOIT (Payload) - Reverse HTTP Encrypted - HTTP (Response)
    MEDIUM
    2024/07/03DDI RULE 5048/vinfo/it/threat-encyclopedia/network/ddi-rule-5048
    DDI RULE 5046 Exfiltration SSH Private Key - HTTP (Response)
    HIGH
    2024/06/24DDI RULE 5046/vinfo/it/threat-encyclopedia/network/ddi-rule-5046
    DDI RULE 5044 CVE-2024-24919 - Check Point Information Disclosure Exploit - HTTP (Response)
    HIGH
    2024/06/19DDI RULE 5044/vinfo/it/threat-encyclopedia/network/ddi-rule-5044
    DDI RULE 5045 CVE-2024-4577 - PHP CGI Argument Injection Remote Code Execution - HTTP (Request)
    HIGH
    2024/06/19DDI RULE 5045/vinfo/it/threat-encyclopedia/network/ddi-rule-5045
    DDI RULE 5033 METASPLOIT (Payload) - Reverse TCP Encrypted - TCP (Response)
    MEDIUM
    2024/06/13DDI RULE 5033/vinfo/it/threat-encyclopedia/network/ddi-rule-5033
    DDI RULE 5043 Gomir C2 - HTTP (Request)
    HIGH
    2024/06/04DDI RULE 5043/vinfo/it/threat-encyclopedia/network/ddi-rule-5043
    DDI RULE 5042 CVE-2024-4956 - Nexus Repository 3 Path Traversal Exploit - HTTP (Response)
    HIGH
    2024/05/30DDI RULE 5042/vinfo/it/threat-encyclopedia/network/ddi-rule-5042
    DDI RULE 5035 JSOUTPROX - HTTP (REQUEST)
    HIGH
    2024/05/29DDI RULE 5035/vinfo/it/threat-encyclopedia/network/ddi-rule-5035
    DDI RULE 5037 CVE-2024-3272 - D-LINK NAS devices Hardcoded Credential Exploit - HTTP (Request)
    HIGH
    2024/05/29DDI RULE 5037/vinfo/it/threat-encyclopedia/network/ddi-rule-5037
    DDI RULE 5038 CVE-2024-3273 - D-LINK NAS devices Command Injection Exploit - HTTP (Request)
    HIGH
    2024/05/29DDI RULE 5038/vinfo/it/threat-encyclopedia/network/ddi-rule-5038
    DDI RULE 5039 SOAP API RCE - HTTP (Request)
    HIGH
    2024/05/29DDI RULE 5039/vinfo/it/threat-encyclopedia/network/ddi-rule-5039
    DDI RULE 5040 DLINK RCE - HTTP (Request)
    HIGH
    2024/05/29DDI RULE 5040/vinfo/it/threat-encyclopedia/network/ddi-rule-5040
    DDI RULE 5041 IDB EXFILTRATION - HTTP(REQUEST)
    HIGH
    2024/05/29DDI RULE 5041/vinfo/it/threat-encyclopedia/network/ddi-rule-5041
    DDI RULE 5031 CVE-2022-30333 - RARLab UnRAR Directory Traversal Exploit - HTTP (Response)
    HIGH
    2024/05/27DDI RULE 5031/vinfo/it/threat-encyclopedia/network/ddi-rule-5031
    DDI RULE 5034 TINYNUKE DOWNLOADER - HTTP (REQUEST)
    HIGH
    2024/05/27DDI RULE 5034/vinfo/it/threat-encyclopedia/network/ddi-rule-5034
    DDI RULE 5036 MELTED Hidden VNC - TCP (REQUEST)
    HIGH
    2024/05/27DDI RULE 5036/vinfo/it/threat-encyclopedia/network/ddi-rule-5036
    DDI RULE 5032 Copy BAT Files - SMB2 (Request)
    LOW
    2024/05/21DDI RULE 5032/vinfo/it/threat-encyclopedia/network/ddi-rule-5032
    DDI RULE 5030 MIMIC C2 - HTTP (Request)
    MEDIUM
    2024/05/15DDI RULE 5030/vinfo/it/threat-encyclopedia/network/ddi-rule-5030
    DDI RULE 4887 COBALTSTRIKE - HTTP (REQUEST) - Variant 4
    HIGH
    2024/05/09DDI RULE 4887/vinfo/it/threat-encyclopedia/network/ddi-rule-4887
    DDI RULE 5028 EVILPROXY - HTTP (Response)
    HIGH
    2024/05/07DDI RULE 5028/vinfo/it/threat-encyclopedia/network/ddi-rule-5028
    DDI RULE 5024 CVE-2024-31138 - JetBrains TeamCity Cross-Site Scripting Exploit - HTTP (Request)
    HIGH
    2024/05/06DDI RULE 5024/vinfo/it/threat-encyclopedia/network/ddi-rule-5024
    DDI RULE 5025 CVE-2024-24401 - Nagios XI SQL Injection Exploit - HTTP (Response)
    HIGH
    2024/05/06DDI RULE 5025/vinfo/it/threat-encyclopedia/network/ddi-rule-5025
    DDI RULE 5026 POSSIBLE GOOTLOADER C2 - HTTP (Response)
    MEDIUM
    2024/05/06DDI RULE 5026/vinfo/it/threat-encyclopedia/network/ddi-rule-5026
    DDI RULE 5023 BATLOADER C2 - HTTP (Request)
    MEDIUM
    2024/04/29DDI RULE 5023/vinfo/it/threat-encyclopedia/network/ddi-rule-5023
    DDI RULE 5021 CVE-2023-48788 - FortiClientEMS SQL Injection Exploit - TCP (Request)
    HIGH
    2024/04/18DDI RULE 5021/vinfo/it/threat-encyclopedia/network/ddi-rule-5021
    DDI RULE 5022 CVE-2024-3400 - Palo Alto Command Injection Exploit - HTTP (Request)
    HIGH
    2024/04/17DDI RULE 5022/vinfo/it/threat-encyclopedia/network/ddi-rule-5022
    DDI RULE 5020 BUNNYLOADER - HTTP (REQUEST)
    HIGH
    2024/04/15DDI RULE 5020/vinfo/it/threat-encyclopedia/network/ddi-rule-5020
    DDI RULE 5017 CVE-2024-20767 - Cold Fusion Directory Traversal Exploit - HTTP (Response)
    HIGH
    2024/04/08DDI RULE 5017/vinfo/it/threat-encyclopedia/network/ddi-rule-5017
    DDI RULE 5018 CVE-2023-32315 - Ignite Realtime Openfire Directory Traversal Exploit - HTTP (Response)
    HIGH
    2024/04/08DDI RULE 5018/vinfo/it/threat-encyclopedia/network/ddi-rule-5018
    DDI RULE 5019 CVE-2023-42793 - Teamcity Server - HTTP(Response)
    HIGH
    2024/04/08DDI RULE 5019/vinfo/it/threat-encyclopedia/network/ddi-rule-5019
    DDI RULE 5016 Raccoon Stealer - HTTP (Request)
    HIGH
    2024/04/02DDI RULE 5016/vinfo/it/threat-encyclopedia/network/ddi-rule-5016
    DDI RULE 5015 COMEBACKER - HTTP (Request)
    HIGH
    2024/04/01DDI RULE 5015/vinfo/it/threat-encyclopedia/network/ddi-rule-5015
    DDI RULE 5014 APT - LOOKBACK - TCP (Request)
    HIGH
    2024/03/25DDI RULE 5014/vinfo/it/threat-encyclopedia/network/ddi-rule-5014
    DDI RULE 5013 Default GUID on External IP - SMB2 (Response)
    HIGH
    2024/03/14DDI RULE 5013/vinfo/it/threat-encyclopedia/network/ddi-rule-5013
    DDI RULE 5005 APT - LOOKBACK - TCP (Response)
    HIGH
    2024/03/11DDI RULE 5005/vinfo/it/threat-encyclopedia/network/ddi-rule-5005
    DDI RULE 5011 CVE-2024-27198 - JetBrains TeamCity Auth Bypass Exploit - HTTP (Response)
    HIGH
    2024/03/11DDI RULE 5011/vinfo/it/threat-encyclopedia/network/ddi-rule-5011
    DDI RULE 5012 CVE-2024-27199 - JetBrains TeamCity Directory Traversal Exploit - HTTP (Response)
    HIGH
    2024/03/11DDI RULE 5012/vinfo/it/threat-encyclopedia/network/ddi-rule-5012
    DDI RULE 5010 NTLM Challenge from External IP Address - SMB2 (Response)
    MEDIUM
    2024/03/07DDI RULE 5010/vinfo/it/threat-encyclopedia/network/ddi-rule-5010
    DDI RULE 4923 Splashtop Business Access Remote Desktop RMM - DNS (Response)
    LOW
    2024/03/05DDI RULE 4923/vinfo/it/threat-encyclopedia/network/ddi-rule-4923
    DDI RULE 4999 CVE-2023-48365 - Qlik HTTP Smuggling - HTTP (Response)
    MEDIUM
    2024/02/27DDI RULE 4999/vinfo/it/threat-encyclopedia/network/ddi-rule-4999
    DDI RULE 5001 TeamViewer RMM - UDP (Request)
    MEDIUM
    2024/02/26DDI RULE 5001/vinfo/it/threat-encyclopedia/network/ddi-rule-5001
    DDI RULE 5002 TeamViewer RMM - DNS (Response)
    MEDIUM
    2024/02/26DDI RULE 5002/vinfo/it/threat-encyclopedia/network/ddi-rule-5002
    DDI RULE 5008 CVE-2023-41265 - QLIK Request Tunneling Exploit - HTTP (Request)
    HIGH
    2024/02/26DDI RULE 5008/vinfo/it/threat-encyclopedia/network/ddi-rule-5008
    DDI RULE 5009 CVE-2023-41266 - QLIK Directory Traversal Exploit - HTTP (Request)
    HIGH
    2024/02/26DDI RULE 5009/vinfo/it/threat-encyclopedia/network/ddi-rule-5009
    DDI RULE 5006 CVE-2024-1708 - ConnectWise ScreenConnect Directory Traversal Exploit - HTTP (Request)
    HIGH
    2024/02/23DDI RULE 5006/vinfo/it/threat-encyclopedia/network/ddi-rule-5006
    DDI RULE 5007 CVE-2024-1709 - ConnectWise ScreenConnect Authentication Bypass Exploit - HTTP (Response)
    HIGH
    2024/02/23DDI RULE 5007/vinfo/it/threat-encyclopedia/network/ddi-rule-5007
    DDI RULE 5003 CVE-2024-22024 - Ivanti Connect Secure & Policy Secure Authentication Bypass Exploit - HTTP (Request)
    HIGH
    2024/02/22DDI RULE 5003/vinfo/it/threat-encyclopedia/network/ddi-rule-5003
    DDI RULE 5004 SuperOps RMM Sensor - DNS (Response)
    LOW
    2024/02/22DDI RULE 5004/vinfo/it/threat-encyclopedia/network/ddi-rule-5004
    DDI RULE 4996 CVE-2024-21893 - Ivanti Connect Secure & Policy Secure Gateways Server-Side Request Forgery Exploit - HTTP (Request)
    HIGH
    2024/02/19DDI RULE 4996/vinfo/it/threat-encyclopedia/network/ddi-rule-4996
    DDI RULE 4998 DARKME - TCP (Request)
    HIGH
    2024/02/15DDI RULE 4998/vinfo/it/threat-encyclopedia/network/ddi-rule-4998
    DDI RULE 5000 GhostLocker Exfiltration - HTTP (Request)
    HIGH
    2024/02/15DDI RULE 5000/vinfo/it/threat-encyclopedia/network/ddi-rule-5000
    DDI RULE 4995 CVE-2023-46805 - Ivanti Connect Secure & Policy Secure Gateways Authentication Bypass Exploit - HTTP (Response)
    HIGH
    2024/02/12DDI RULE 4995/vinfo/it/threat-encyclopedia/network/ddi-rule-4995
    DDI RULE 4997 CVE-2024-23897 - Jenkins Authentication Bypass Exploit - HTTP (Request)
    HIGH
    2024/02/12DDI RULE 4997/vinfo/it/threat-encyclopedia/network/ddi-rule-4997
    DDI RULE 4994 CVE-2024-0204 - Fortra GoAnywhere MFT AuthBypass Exploit - HTTP(Request)
    HIGH
    2024/02/01DDI RULE 4994/vinfo/it/threat-encyclopedia/network/ddi-rule-4994
    DDI RULE 4973 Possible Encryption Downgrade Attack - Kerberos (Response)
    MEDIUM
    2024/01/31DDI RULE 4973/vinfo/it/threat-encyclopedia/network/ddi-rule-4973
    DDI RULE 4992 CVE-2023-32252 - Linux Kernel ksmbd NULL Pointer Exploit - SMB2 (Request)
    HIGH
    2024/01/31DDI RULE 4992/vinfo/it/threat-encyclopedia/network/ddi-rule-4992
    DDI RULE 4986 CVE-2023-46604 - Possible Apache ActiveMQ RCE Exploit - HTTP (Response)
    MEDIUM
    2024/01/29DDI RULE 4986/vinfo/it/threat-encyclopedia/network/ddi-rule-4986
    DDI RULE 4991 PIKABOT EXFIL - HTTP (Request)
    HIGH
    2024/01/29DDI RULE 4991/vinfo/it/threat-encyclopedia/network/ddi-rule-4991
    DDI RULE 4993 MAGIC HOUND SOAP - HTTP(Request)
    HIGH
    2024/01/29DDI RULE 4993/vinfo/it/threat-encyclopedia/network/ddi-rule-4993
    DDI RULE 4974 HAVOC - HTTP (Request)
    HIGH
    2024/01/25DDI RULE 4974/vinfo/it/threat-encyclopedia/network/ddi-rule-4974
    DDI RULE 4990 CVE-2023-22527 - Atlassian OGNL Injection Exploit - HTTP (Request)
    HIGH
    2024/01/25DDI RULE 4990/vinfo/it/threat-encyclopedia/network/ddi-rule-4990
    DDI RULE 4987 TPRC - HTTP (Request)
    HIGH
    2024/01/24DDI RULE 4987/vinfo/it/threat-encyclopedia/network/ddi-rule-4987
    DDI RULE 4988 CVE-2023-46805 - Ivanti Connect Secure and Policy Secure Gateways Authentication Bypass Exploit - HTTP (Request)
    HIGH
    2024/01/24DDI RULE 4988/vinfo/it/threat-encyclopedia/network/ddi-rule-4988
    DDI RULE 4989 CVE-2024-21887 - Ivanti Connect Secure and Policy Secure Gateways Command Injection Exploit - HTTP (Request)
    HIGH
    2024/01/24DDI RULE 4989/vinfo/it/threat-encyclopedia/network/ddi-rule-4989
    DDI RULE 4859 ZIP TLD MOVED - HTTP(RESPONSE)
    HIGH
    2024/01/23DDI RULE 4859/vinfo/it/threat-encyclopedia/network/ddi-rule-4859
    DDI RULE 4984 CVE-2023-44487 - HTTP2 DDOS EXPLOIT - TCP (REQUEST) - Variant 2
    HIGH
    2024/01/22DDI RULE 4984/vinfo/it/threat-encyclopedia/network/ddi-rule-4984
    DDI RULE 4985 CVE-2023-46604 - Apache ActiveMQ RCE Exploit - TCP (Request)
    HIGH
    2024/01/22DDI RULE 4985/vinfo/it/threat-encyclopedia/network/ddi-rule-4985
    DDI RULE 4983 Micosoft Windows SmartScreen Exploit(ZDI-CAN-23100) - HTTP(Response)
    HIGH
    2024/01/18DDI RULE 4983/vinfo/it/threat-encyclopedia/network/ddi-rule-4983
    DDI RULE 4982 COPY FILES - SMB2(REQUEST)
    HIGH
    2024/01/16DDI RULE 4982/vinfo/it/threat-encyclopedia/network/ddi-rule-4982
    DDI RULE 4975 CVE-2023-51467- Apache OFBiz Pre-Auth RCE Exploit - HTTP (Response)
    HIGH
    2024/01/11DDI RULE 4975/vinfo/it/threat-encyclopedia/network/ddi-rule-4975
    DDI RULE 4976 SYSTEM INFORMATION DISCOVERY - LDAP(REQUEST)
    MEDIUM
    2024/01/11DDI RULE 4976/vinfo/it/threat-encyclopedia/network/ddi-rule-4976
    DDI RULE 4977 TRUSTED DOMAIN DISCOVERY - LDAP(REQUEST)
    MEDIUM
    2024/01/11DDI RULE 4977/vinfo/it/threat-encyclopedia/network/ddi-rule-4977
    DDI RULE 4978 PASSWORD POLICY DISCOVERY - LDAP(REQUEST)
    MEDIUM
    2024/01/11DDI RULE 4978/vinfo/it/threat-encyclopedia/network/ddi-rule-4978
    DDI RULE 4979 PERMISSION GROUP DISCOVERY - LDAP(REQUEST)
    MEDIUM
    2024/01/11DDI RULE 4979/vinfo/it/threat-encyclopedia/network/ddi-rule-4979
    DDI RULE 4980 SYSTEM OWNER DISCOVERY - LDAP(REQUEST)
    MEDIUM
    2024/01/11DDI RULE 4980/vinfo/it/threat-encyclopedia/network/ddi-rule-4980
    DDI RULE 4981 ACCOUNT DISCOVERY - LDAP(REQUEST)
    MEDIUM
    2024/01/11DDI RULE 4981/vinfo/it/threat-encyclopedia/network/ddi-rule-4981
    DDI RULE 4972 PIKABOT DLL Dropper - HTTP (Request)
    MEDIUM
    2024/01/10DDI RULE 4972/vinfo/it/threat-encyclopedia/network/ddi-rule-4972
    DDI RULE 4968 Remcos - TCP
    MEDIUM
    2024/01/03DDI RULE 4968/vinfo/it/threat-encyclopedia/network/ddi-rule-4968
    DDI RULE 4969 Fonelab - Certificate - HTTPS
    MEDIUM
    2024/01/03DDI RULE 4969/vinfo/it/threat-encyclopedia/network/ddi-rule-4969
    DDI RULE 4970 CVE-2021-20016 - SonicWall SSLVPN SMA100 SQL Injection Exploit - HTTP (Request)
    HIGH
    2024/01/03DDI RULE 4970/vinfo/it/threat-encyclopedia/network/ddi-rule-4970
    DDI RULE 4971 APT CONN - UDP(REQUEST)
    HIGH
    2024/01/02DDI RULE 4971/vinfo/it/threat-encyclopedia/network/ddi-rule-4971
    DDI RULE 4928 CVE-2023-2914 - Rockwell Automation ThinManager ThinServer Type 13 Synchronization Integer Overflow Exploit - TCP (Request)
    HIGH
    2023/12/21DDI RULE 4928/vinfo/it/threat-encyclopedia/network/ddi-rule-4928
    DDI RULE 4967 CVE-2023-50164 - Apace Struts2 Path Traversal Exploit - HTTP (Request)
    HIGH
    2023/12/19DDI RULE 4967/vinfo/it/threat-encyclopedia/network/ddi-rule-4967
    DDI RULE 4965 LVRAN - HTTP (Request)
    HIGH
    2023/12/18DDI RULE 4965/vinfo/it/threat-encyclopedia/network/ddi-rule-4965
    DDI RULE 4966 BIGIP TMSH Path Exploit - HTTP (Response)
    MEDIUM
    2023/12/14DDI RULE 4966/vinfo/it/threat-encyclopedia/network/ddi-rule-4966
    DDI RULE 4949 CVE-2023-46747 - BIGIP Smug Exploit - HTTP (Request)
    HIGH
    2023/12/12DDI RULE 4949/vinfo/it/threat-encyclopedia/network/ddi-rule-4949
    DDI RULE 4962 BRUTEFORCE - SMB(RESPONSE)
    HIGH
    2023/12/12DDI RULE 4962/vinfo/it/threat-encyclopedia/network/ddi-rule-4962
    DDI RULE 4964 CVE-2023-49070 - Apache OFBiz Pre-Auth RCE Exploit - HTTP (Request)
    HIGH
    2023/12/12DDI RULE 4964/vinfo/it/threat-encyclopedia/network/ddi-rule-4964
    DDI RULE 4963 CVE-2023-44487 - HTTP2 DDOS EXPLOIT - TCP(REQUEST)
    HIGH
    2023/12/11DDI RULE 4963/vinfo/it/threat-encyclopedia/network/ddi-rule-4963
    DDI RULE 4958 POSSIBLE TUNNELING - DNS (Response) - Variant 2
    LOW
    2023/12/05DDI RULE 4958/vinfo/it/threat-encyclopedia/network/ddi-rule-4958
    DDI RULE 4959 COBEACON C2 - HTTP(RESPONSE)
    MEDIUM
    2023/12/05DDI RULE 4959/vinfo/it/threat-encyclopedia/network/ddi-rule-4959
    DDI RULE 4961 TRAMPIKABOT - HTTP(REQUEST)
    HIGH
    2023/12/05DDI RULE 4961/vinfo/it/threat-encyclopedia/network/ddi-rule-4961
    DDI RULE 4930 RHYSIDA - SMB2 (Request)
    HIGH
    2023/11/30DDI RULE 4930/vinfo/it/threat-encyclopedia/network/ddi-rule-4930
    DDI RULE 4960 CVE-2023-46604 - Possible Apache ActiveMQ RCE Exploit - HTTP (Request)
    MEDIUM
    2023/11/30DDI RULE 4960/vinfo/it/threat-encyclopedia/network/ddi-rule-4960
    DDI RULE 4956 CVE-2023-47246 - SYSAID TRAVERSAL EXPLOIT - HTTP (Request)
    HIGH
    2023/11/22DDI RULE 4956/vinfo/it/threat-encyclopedia/network/ddi-rule-4956
    DDI RULE 4957 CVE-2023-4634 - Wordpress Plugin Media-Library-Assistant RCE Exploit - HTTP (Request)
    HIGH
    2023/11/22DDI RULE 4957/vinfo/it/threat-encyclopedia/network/ddi-rule-4957
    DDI RULE 4879 Possible CVE-2021-27876 - Veritas RCE Exploit - TCP (Response)
    LOW
    2023/11/21DDI RULE 4879/vinfo/it/threat-encyclopedia/network/ddi-rule-4879
    DDI RULE 4894 CVE-2023-28771 - Zyxel RCE Exploit - UDP (Request)
    HIGH
    2023/11/21DDI RULE 4894/vinfo/it/threat-encyclopedia/network/ddi-rule-4894
    DDI RULE 4952 APT CONN - TCP(REQUEST)
    HIGH
    2023/11/20DDI RULE 4952/vinfo/it/threat-encyclopedia/network/ddi-rule-4952
    DDI RULE 4954 CVE-2022-42475 - Fortinet FortiOS SSL-VPN Buffer Overflow Exploit - HTTP (Request)
    HIGH
    2023/11/20DDI RULE 4954/vinfo/it/threat-encyclopedia/network/ddi-rule-4954
    DDI RULE 4955 PIKABOT - Malicious Certificate - HTTPS
    HIGH
    2023/11/20DDI RULE 4955/vinfo/it/threat-encyclopedia/network/ddi-rule-4955
    DDI RULE 4935 ANOMALIES - HTTP(REQUEST)
    MEDIUM
    2023/11/16DDI RULE 4935/vinfo/it/threat-encyclopedia/network/ddi-rule-4935
    DDI RULE 4942 CVE-2023-4966 - NetScaler ADC and Gateway Buffer Overflow Exploit - HTTP (Request)
    HIGH
    2023/11/16DDI RULE 4942/vinfo/it/threat-encyclopedia/network/ddi-rule-4942
    DDI RULE 4944 CVE-2023-28288 - MS Sharepoint Information Disclosure Exploit - HTTP(Request)
    HIGH
    2023/11/16DDI RULE 4944/vinfo/it/threat-encyclopedia/network/ddi-rule-4944
    DDI RULE 4947 GOOTLOADER XMLRPC - HTTP (Request)
    HIGH
    2023/11/16DDI RULE 4947/vinfo/it/threat-encyclopedia/network/ddi-rule-4947
    DDI RULE 4953 CVE-2023-20198 - Cisco IOS XE WebUI Authentication Bypass Exploit - HTTP (Request)
    HIGH
    2023/11/16DDI RULE 4953/vinfo/it/threat-encyclopedia/network/ddi-rule-4953
    DDI RULE 4913 CVE-2023-40044 - WS FTP RCE Exploit - HTTP (Request)
    HIGH
    2023/11/14DDI RULE 4913/vinfo/it/threat-encyclopedia/network/ddi-rule-4913
    DDI RULE 4936 CVE-2023-29516 - XWIKI RCE Exploit - HTTP (Request)
    HIGH
    2023/11/14DDI RULE 4936/vinfo/it/threat-encyclopedia/network/ddi-rule-4936

    Risorse

    • Blog
    • Notizie
    • Report sulle minacce
    • Trova un partner

    Assistenza

    • Business Support Portal
    • Contattaci
    • Download
    • Versioni di prova gratuite

    Informazioni su Trend

    • Chi siamo
    • Lavora con noi
    • Sedi
    • Prossimi eventi
    • Trust Center

    Sede legale nazionale

    • Trend Micro - Italy (IT)
    • Edison Park Center
      Viale Tomas Edison 110 — Edificio C
      20099, Sesto San Giovanni MI, Italia
    • Phone:: +39 02 925931

    Seleziona un Paese/regione

    close

    America

    • Stati Uniti
    • Brasile
    • Canada
    • Messico

    Medio Oriente e Africa

    • Sudafrica
    • Medio Oriente e Nord Africa

    Europa

    • België (Belgio)
    • Česká Republika (Repubblica Ceca)
    • Danmark (Danimarca)
    • Germania, Austria, Svizzera
    • España (Spagna)
    • France (Francia)
    • Ireland (Irlanda)
    • Italia
    • Nederland (Paesi Bassi)
    • Norge (Norvegia)
    • Polska (Polonia)
    • Suomi (Finlandia)
    • Svezia
    • Turchia
    • United Kingdom (Regno Unito)

    Asia e Pacifico

    • Australia
    • Центральная Азия (Asia Centrale)
    • Hong Kong (Inglese)
    • 香港 (中文) (Hong Kong)
    • भारत गणराज्य (India)
    • Indonesia
    • 日本 (Giappone)
    • 대한민국 (Corea del Sud)
    • Malaysia
    • Монголия (Mongolia) e рузия (Georgia)
    • Nuova Zelanda
    • Filippine
    • Singapore
    • 台灣 (Taiwan)
    • ประเทศไทย (Thailand)
    • Việt Nam (Vietnam)

    Prova gratuitamente la nostra piattaforma unificata

    • Richiedi la tua prova gratuita di 30 giorni
    • Privacy
    • Informazioni legali
    • Termini di utilizzo
    • Mappa del sito
    Copyright ©2025 Trend Micro Incorporated. All rights reserved.