IPS Signature Database Update
Name | ips.sig | ||
Version | 2.1.413 | ||
StoneOS | StoneOS 5.0R4F3.1 or above | ||
Release Date | 2021-07-26 | ||
New Signature (71) |
Rule ID | Rule Name | Detail |
714925 | Gh0st RAT Variant (Ghost Dragon APT) Checkin | click for more information | |
333772 | Skyfall fake Skype install link | click for more information | |
714970 | Gh0st RAT Variant (Ghost Dragon APT) Checkin Response | click for more information | |
333792 | W32.Qakbot Webpage Infection Routine POST | click for more information | |
715000 | DDoS.Win32/Nitol.B Checkin | click for more information | |
333834 | W32/Trickbot C2 (networkDll module) | click for more information | |
714957 | DarkComet-RAT CnC Activity (verack) | click for more information | |
714983 | ATTACKER IRCBot - ipconfig - PRIVMSG Command | click for more information | |
714930 | [PTsecurity] Botnet Nitol.B Checkin | click for more information | |
1908997 | Duqu 2.0 Accessing SMB/SMB2 Named Pipe (Unicode) 5 | click for more information | |
333855 | Google Chrome V8 Engine Type Confusion Vulnerability (CVE-2021-30551) | click for more information | |
714974 | Backdoor.Win32.DarkComet Screenshot Upload Successful | click for more information | |
714992 | ATTACKER IRCBot - PRIVMSG Response - ipconfig command output | click for more information | |
333747 | Bandook HTTP CnC Beacon Response | click for more information | |
714961 | DarkComet-RAT CnC Response (block) | click for more information | |
1908999 | Duqu 2.0 Accessing SMB/SMB2 Named Pipe (Unicode) 4 | click for more information | |
714987 | ATTACKER IRCBot - net user - PRIVMSG Command | click for more information | |
1908993 | Duqu 2.0 Accessing SMB/SMB2 Named Pipe (ASCII) 4 | click for more information | |
505858 | ProRat Keylogger Infection Report via Email | click for more information | |
333733 | Tool Cobalt Strike Attack - Set Connection Vulnerability | click for more information | |
...... | |||
Updated Signature (1) |
Rule ID | Rule Name | Detail |
330099 | HAProxy cookie Denial of Service Vulnerability (CVE-2019-14241) | Click here for more information | |