ET SCAN Possible SSL Brute Force attack or Site Crawl

SID: 2001553Rev: 84 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedJuly 26, 2019
Classificationattempted-dos
alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow:established,to_server; flags:S; threshold:type threshold, track by_src, count 100, seconds 60; classtype:attempted-dos; sid:2001553; rev:8; metadata:created_at 2010_07_30, confidence Medium, signature_severity Informational, updated_at 2019_07_26;)

Metadata

created at2010_07_30
confidenceMedium
signature severityInformational
updated at2019_07_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!