IPS Signature Database Update
| Name | ips.sig | |||
| Version | 2.1.611 | |||
| StoneOS | StoneOS 5.0R4F3.1 or above | |||
| Release Date | 2025-06-16 | |||
| New Signature (141) |
Rule ID | Rule Name | StonesOS | Detail |
| 717076 | Apache CommonBeanutils-1 Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 339065 | Samsung MagicINFO 9 Server Arbitrary File Upload Vulnerability (CVE-2024-7399) | 5.0R4 or above | click for more information | |
| 339020 | Java Groovy Runtime Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 105424 | Ransomware Activity: Ransomware/Cerber Onion Domain Lookup | 5.5R5 or above | click for more information | |
| 339026 | Apache Common-Collections-k4 Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 717093 | Apache Common-Collections-1 Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 105418 | Ransomware Activity: TrumpLocker/VenusLocker .onion Proxy Domain | 5.5R5 or above | click for more information | |
| 717110 | Java Code Injection Detection - Suspicious Reflective Class Load 2 | 5.5R8 or above | click for more information | |
| 332612 | Ransomware Activity: Ransomware Locky CnC Beacon | 5.5R5 or above | click for more information | |
| 339054 | Shiro Filter Type MemoryShell Detection - Base64 Encoding 1 | 5.5R8 or above | click for more information | |
| 717070 | Java Json Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 332633 | Trojan Activity: MALWARE Win32/Adware.Bang5mai.BB CnC Activity M2 | 5.5R5 or above | click for more information | |
| 717083 | Apache Common-Collections-11 Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 339019 | Java Hibernate Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 105427 | Trojan Activity: Magecart CnC Domain Observed in DNS Query | 5.5R5 or above | click for more information | |
| 339036 | Apache Common-Collections-5 Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 332605 | Trojan Activity: StealerNeko CnC Checkin | 5.5R5 or above | click for more information | |
| 105408 | Ransomware Activity: Xbash CnC DNS Lookup | 5.5R5 or above | click for more information | |
| 339025 | Java BeanShell Deserialization Chain Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 332622 | Trojan Activity: Win32/ViSystem CnC Checkin | 5.5R5 or above | click for more information | |
| ...... | ||||
| Updated Signature (15) |
Rule ID | Rule Name | StonesOS | Detail |
| 334872 | SQL Injection Detection - SELECT Injection 2 | 5.5R5 or above | Click here for more information | |
| 334873 | SQL Injection Detection - SELECT Injection 3 | 5.5R5 or above | Click here for more information | |
| 334860 | SQL Injection Detection - Suspicious Modification 3 | 5.5R5 or above | Click here for more information | |
| 334861 | SQL Injection Detection - Suspicious Deletion Behavior 3 | 5.5R5 or above | Click here for more information | |
| 334858 | SQL Injection Detection - Suspicious Deletion Behavior 1 | 5.5R5 or above | Click here for more information | |
| 334859 | SQL Injection Detection - Suspicious Deletion Behavior 2 | 5.5R5 or above | Click here for more information | |
| 334856 | SQL Injection Detection - Suspicious Modification 1 | 5.5R5 or above | Click here for more information | |
| 334866 | SQL Injection Detection - Suspicious Modification 4 | 5.5R5 or above | Click here for more information | |
| 334857 | SQL Injection Detection - Suspicious Modification 2 | 5.5R5 or above | Click here for more information | |
| 334854 | SQL Injection Detection - Suspicious Create Statement 2 | 5.5R5 or above | Click here for more information | |
| 334864 | SQL Injection Detection - UNION SELECT 13 | 5.5R5 or above | Click here for more information | |
| 334855 | SQL Injection Detection - Suspicious Create Statement 1 | 5.5R5 or above | Click here for more information | |
| 334865 | SQL Injection Detection - Suspicious Deletion Behavior 4 | 5.5R5 or above | Click here for more information | |
| 334852 | SQL Injection Detection - GROUP BY Injection 1 | 5.5R5 or above | Click here for more information | |
| 334853 | SQL Injection Detection - ORDER BY Injection 1 | 5.5R5 or above | Click here for more information | |