ET POLICY Login Credentials Possibly Passed in URI

SID: 2009001Rev: 50 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedMarch 10, 2024
Classificationpolicy-violation
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET POLICY Login Credentials Possibly Passed in URI"; flow:established,to_server; http.uri; content:"username="; nocase; content:"password="; fast_pattern; nocase; classtype:policy-violation; sid:2009001; rev:5; metadata:created_at 2010_07_30, confidence High, signature_severity Informational, updated_at 2024_03_10;)

Metadata

created at2010_07_30
confidenceHigh
signature severityInformational
updated at2024_03_10

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!