Versions (2)
Version DetailsCurrent
Rev: 2 • Aug 21, 2023, 12:00 PM🐾 - 🚨 👀 checkip.dyndns.com lookup public IP address from local network - Possible Leak 🚱
alert http $HOME_NET any -> $EXTERNAL_NET any (msg:"🐾 - 🚨 👀 checkip.dyndns.com lookup public IP address from local network - Possible Leak 🚱"; flow:to_server, stateless; threshold:type limit, track by_src,count 1, seconds 3600; http.host.raw; content:"checkip.dyndns.com"; nocase; metadata:created_at 2023_08_21, updated_at 2024_08_08; sid:3300370; rev:2; classtype:external-ip-check;)
Aug 21, 2023, 12:00 PM
Aug 8, 2024, 12:00 PM
Feb 21, 2024, 4:00 PM
May 29, 2025, 11:12 PM
rules/PAW-PATRULES_LEAKS.rules