EveBox Rules

ET INFO DYNAMIC_DNS Query to a *.photo-cult .com DomainSource: et/open

alert dns $HOME_NET any -> any any (msg:"ET INFO DYNAMIC_DNS Query to a *.photo-cult .com Domain"; dns.query; content:".photo-cult.com"; fast_pattern; nocase; endswith; reference:url,freedns.afraid.org/domain/registry/page-2.html; classtype:bad-unknown; sid:2048371; rev:1; metadata:created_at 2023_10_02, updated_at 2023_10_02, reviewed_at 2023_10_02;)

Reference
URL	http://freedns.afraid.org/domain/registry/page-2.html

Metadata
created_at	2023_10_02
updated_at	2023_10_02
reviewed_at	2023_10_02