IPS Signature Database Update
| Name | ips.sig | |||
| Version | 2.1.612 | |||
| StoneOS | StoneOS 5.0R4F3.1 or above | |||
| Release Date | 2025-06-23 | |||
| New Signature (68) |
Rule ID | Rule Name | StonesOS | Detail |
| 339096 | Java Code Injection Detection - Suspicious Reflective Class Load 7 | 5.5R8 or above | click for more information | |
| 105464 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105467 | Trojan Activity: Inter Skimmer CnC Domain in DNS Lookup | 5.5R5 or above | click for more information | |
| 717123 | Java Filter Type MemoryShell Detection - 3 | 5.5R8 or above | click for more information | |
| 717146 | JAVA Servlet Type MemoryShell Detection - Base64 Encoding 2 | 5.5R8 or above | click for more information | |
| 105463 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105453 | Trojan Activity: Group 21 CnC Domain Observed in DNS Query | 5.5R5 or above | click for more information | |
| 339082 | Yonyou U8-GRP fastjson Remote Code Execution Vulnerability | 5.5R8 or above | click for more information | |
| 105462 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 339113 | JAVA Servlet Type MemoryShell Detection - Base64 Encoding 3 | 5.5R8 or above | click for more information | |
| 105472 | Ransomware Activity: Cerber Domain Observed | 5.5R5 or above | click for more information | |
| 339078 | Yonyou NC workflowImageServlet SQL Injection Vulnerability | 5.0R4 or above | click for more information | |
| 339088 | Yonyou U8-CRM attrlist SQL Injection Vulnerability | 5.0R4 or above | click for more information | |
| 714731 | Trojan Activity: Observed Nemty Ransomware Payment Page | 5.5R5 or above | click for more information | |
| 332657 | Trojan Activity: Observed Godlua Backdoor Domain | 5.5R5 or above | click for more information | |
| 332654 | Trojan Activity: SMS-Bomber Activity | 5.5R5 or above | click for more information | |
| 339109 | JAVA WebSocket Type MemoryShell Detection - Base64 Encoding | 5.5R8 or above | click for more information | |
| 105458 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105475 | Ransomware Activity: Cerber Domain Observed | 5.5R5 or above | click for more information | |
| 339116 | JAVA Servlet Type MemoryShell Detection - Base64 Encoding 2 | 5.5R8 or above | click for more information | |
| ...... | ||||
| Updated Signature (14) |
Rule ID | Rule Name | StonesOS | Detail |
| 338613 | ASP Trojan Detection | 5.5R5 or above | Click here for more information | |
| 716993 | ASP Trojan Detection | 5.5R5 or above | Click here for more information | |
| 334890 | SQL Injection Detection - Suspicious Query Statement 1 | 5.5R5 or above | Click here for more information | |
| 334900 | SQL Injection Detection - Delayed Injection 3 | 5.5R5 or above | Click here for more information | |
| 334891 | SQL Injection Detection - Boolean Injection 1 | 5.5R5 or above | Click here for more information | |
| 334910 | SQL Injection Detection - SELECT Injection 3 | 5.5R5 or above | Click here for more information | |
| 334898 | SQL Injection Detection - Delayed Injection 1 | 5.5R5 or above | Click here for more information | |
| 334930 | SQL Injection Detection - Suspicious SQL Comment 2 | 5.5R5 or above | Click here for more information | |
| 334899 | SQL Injection Detection - Delayed Injection 2 | 5.5R5 or above | Click here for more information | |
| 334896 | SQL Injection Detection - Multiple Table Query 1 | 5.5R5 or above | Click here for more information | |
| 334887 | SQL Injection Detection - Access to Sensitive Information 1 | 5.5R5 or above | Click here for more information | |
| 334897 | SQL Injection Detection - Boolean Injection 4 | 5.5R5 or above | Click here for more information | |
| 334916 | SQL Injection Detection - SELECT Injection 4 | 5.5R5 or above | Click here for more information | |
| 334894 | SQL Injection Detection - Boolean Injection 2 | 5.5R5 or above | Click here for more information | |