Versions (3)
Version DetailsCurrent
Rev: 3 • Oct 31, 2022, 12:00 PM🐾 - 🚨 👀 api.ipify.org lookup public IP address from local network - Possible Leak 🚱
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"🐾 - 🚨 👀 api.ipify.org lookup public IP address from local network - Possible Leak 🚱"; flow:to_server, stateless; threshold:type limit, track by_src,count 1, seconds 3600; http.host.raw; content:"api.ipify.org"; nocase; metadata:created_at 2022_10_31, updated_at 2024_08_09; sid:3300357; rev:3; classtype:external-ip-check;)
Oct 31, 2022, 12:00 PM
Aug 9, 2024, 12:00 PM
Feb 21, 2024, 4:00 PM
May 29, 2025, 11:12 PM
rules/PAW-PATRULES_LEAKS.rules