Versions (2)
Version DetailsCurrent
Rev: 3 • Jan 17, 2014, 12:00 PMET DELETED Possible Updatre Compromised SSL Certificate marchsf
alert tcp $EXTERNAL_NET 443 -> $HOME_NET any (msg:"ET DELETED Possible Updatre Compromised SSL Certificate marchsf"; flow:established,from_server; content:"|02 07 04 81 e4 de 05 6a 5a|"; content:"|0b|marchsf.com"; distance:0; fast_pattern; classtype:trojan-activity; sid:2017978; rev:3; metadata:attack_target Client_Endpoint, created_at 2014_01_17, deployment Perimeter, signature_severity Major, tag SSL_Malicious_Cert, updated_at 2019_09_10;)
Jan 17, 2014, 12:00 PM
Sep 10, 2019, 12:00 PM
Jan 17, 2014, 12:00 PM
May 31, 2024, 9:00 PM
rules/emerging-deleted.rules