Search

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share 1003712* - Windows Vista SMB2.0 Negotia...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share DNS Client 1007425 - ISC BIND OpenPGP Ke...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share 1008224* - Microsoft Windows SMB Remote Co...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share DNS Client 1010771* - DNSmasq DNSSEC Ou...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1009801* - Microsoft Windows NTLM Elevation Of Privilege Vulnerability (CVE-2019-1040) 1001839* - Restrict Attempt To Enumerate Windo...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Asterisk Server IAX2 1003583* - Asterisk IAX2 Resource Exhaustion Denial Of Service 1003778* - Digium Asterisk IAX2 Call Number Denial Of Service DCE...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share 1007598* - Identified Possible Ransomware F...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1007596* - Identified Possible Ransomware File Extension Rename Activity Over Network Share 1007598* - Identified Possible Ransomware F...

* indicates a new version of an existing rule Deep Packet Inspection Rules: BIND RNDC 1008099 - ISC BIND rndc Control Channel Denial Of Service Vulnerability (CVE-2016-1285) DCERPC Services 1007596* - Identified Possible Ran...

ImageMagick 'label' Pseudo Protocol Local File Read Vulnerability (CVE-2016-3717) It is possible to get content of any arbitrary file from the web server by using ImageMagick's 'label' pseudo protocol. Apply associated Trend Micro DPI Rules.

It is possible to delete arbitrary files on a web server by using ImageMagick's 'ephemeral' pseudo protocol, which deletes files after reading. Apply associated Trend...

It is possible to move image files to file with any extension in any folder on a web server by using ImageMagick's 'msl' pseudo protocol. Apply associated Trend Micro DPI Rul...

Hacking tools are applications that crack or break computer and network security measures. Hacking tools have different capabilities that have been designed to penetrate systems. Some system administrators have been known to use similar programs to t...

Hacking tools are applications that crack or break computer and network security measures. Hacking tools have different capabilities that have been designed to penetrate systems. Some system administrators have been known to use similar programs to t...

XXE vulnerability in SAP BW can lead to arbitrary file reading or an SMBRelay attack. By exploiting this vulnerability, an internal or external attacker will be able to access any files located in ...

* indicates a new version of an existing rule Deep Packet Inspection Rules: DCERPC Services 1004542* - Windows Netlogon Service Denial Of Service (CVE-2010-2742) FTP Server Common 1003784* - FTP Server Restrict Executable ...

VMware vCenter Server contains a remotely accessible JMX RMI service that is not securely configured. An unauthenticated remote attacker that is able to connect t...

An email that poses as a notification of a possible account compromise carries an attachment that is detected as DRIDEX malware. To convince users to open the attachment, it instructs reci...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Database MySQL 1005045* - MySQL Database Server Possible Login Brute Force Attempt Web Application PHP Based 1006432* - WordPress Slider Revolution R...

* indicates a new version of an existing rule Deep Packet Inspection Rules: Azure Open Management Infrastructure Tool 1011147* - Open Management Infrastructure Remote Code Execution Vulnerability (CVE-2021-38647) DCERPC Servi...