Rule History

alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"ET INFO Commonly Abused File Sharing Service Domain HTTP request (mediafire .com)"; flow:established,to_server; http.method; content:"GET"; http.uri; content:"/?"; http.host; content:"mediafire.com"; fast_pattern; classtype:misc-activity; sid:2009303; rev:7; metadata:attack_target Client_Endpoint, created_at 2010_07_30, deployment Perimeter, deployment SSLDecrypt, performance_impact Low, signature_severity Informational, updated_at 2023_05_02;)