Search

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008679* - Identified BADRABBIT Ransomware Propagation Over SMB 1008327* - Identified Server Suspicious SMB Session 1010214* - Identifi...

A NTP Server can be tricked to send responses to a spoofed IP address which can result in heavy network traffic coming to an arbitrary server on an arbitrary port. By doing th...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Content Management Server Microsoft 1000984* - Microsoft CMS Cross Site Scripting Vulnerability DNS Client 1008053 - ISC BIND DNAME Answer Handling...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Apache OpenMeetings 1008267* - Apache OpenMeetings ZIP File Path Traversal Vulnerability (CVE-2016-0784) DCERPC Services 1008432* - Microsoft Windows S...

Simple Service Discovery Protocol (SSDP) is used for discovery of Plug & Play (UPnP) devices. The protocol is vulnerable to reflection-based distributed denial of service (DDoS) attac...

MIRAI is a malware that turns networked devices running Linux into remotely controlled bots that can be used as part of a botnet in large-scale network attacks. It primarily targets online consumer devices such as IP cameras and home routers. The MIR...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1006906* - Identified Usage Of PsExec Command Line Tool DNS Server 1004747* - DNS Invalid Compression Denial Of Service FTP Server Com...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services - Client 1008915* - Microsoft Windows SMBv3 Denial Of Service Vulnerability (CVE-2018-0833) DHCPv6 Server 1008668 - Dnsmasq Informatio...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1008422 - Detected SMBv1 Request DCERPC Services - Client 1008423 - Detected SMBv1 Response Database MySQL 1008330 - MySQL Denial Of Ser...

* indicates a new version of an existing rule Deep Packet Inspection Rules: CyberPanel 1012300 - CyberPanel Command Injection Vulnerability (CVE-2024-51378) HPE Insight Remote Support 1012304 - HPE Insight Remote Support Direc...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Web Application Common 1009154 - ImageMagick 'GetImagePixelCache' Denial Of Service Vulnerability (CVE-2018-11655) - 1 1009152 - ImageMagick 'MngInfoDi...

Microsoft addresses the following vulnerabilities in its January batch of patches: (MS17-003) Security Update for Adobe Flash Player (3214628) Risk Rating: Critical This security update resolves...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Apache Kylin 1012500 - Apache Kylin Arbitrary File Read Vulnerability (CVE-2025-61734) CyberPanel 1012377* - CyberPanel Command Injection Vulnerabili...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Apache Nifi 1012122 - Apache NiFi Stored Cross-Site Scripting Vulnerability (CVE-2024-37389) DHCP Failover Protocol Server 1012136 - Microsoft Wind...

This Backdoor arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites. It listens on ports. It performs denial of service (DoS) attacks on affected systems using specific floo...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Advanced Message Queuing Protocol (AMQP) 1011799* - SolarWinds Network Performance Monitor Insecure Deserialization Vulnerability (CVE-2022-47504) DN...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share 1007598* - Identified Possible Ransomw...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1009490* - Block Administrative Share - 1 (ATT&CK T1021.002) 1007596* - Identified Possible Ransomware File Extension Rename Activity Ov...

A memory leak flaw was found in the way OpenSSL handled TLS status request extension data during session renegotiation. A remote attacker could cause a TLS server using OpenS...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Asterisk RTP Protocol 1009953 - Digium Asterisk PJSIP In-Dialog MESSAGE Request Denial-of-Service (CVE-2019-12827) DCERPC Services 1003292* - Bloc...