ET POLICY Login Credentials Possibly Passed in POST Data

SID: 2009004Rev: 50 views
History
Sourceet/open
CreatedJuly 30, 2010
UpdatedMarch 5, 2024
Classificationpolicy-violation
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET POLICY Login Credentials Possibly Passed in POST Data"; flow:established,to_server; http.method; content:"POST"; http.request_body; content:"username="; nocase; content:"password="; fast_pattern; nocase; classtype:policy-violation; sid:2009004; rev:5; metadata:created_at 2010_07_30, confidence High, signature_severity Informational, updated_at 2024_03_05;)

Metadata

created at2010_07_30
confidenceHigh
signature severityInformational
updated at2024_03_05

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!