ET MALWARE Double HTTP/1.1 Header Inbound - Likely Hostile Traffic - Suricata Rule 2014047 (et/open)

ET MALWARE Double HTTP/1.1 Header Inbound - Likely Hostile Traffic

SID: 2014047Rev: 312 viewsHistory

Sourceet/open

CreatedDecember 30, 2011

UpdatedJuly 26, 2019

Classificationbad-unknown

alert tcp $EXTERNAL_NET any -> $HOME_NET $HTTP_PORTS (msg:"ET MALWARE Double HTTP/1.1 Header Inbound - Likely Hostile Traffic"; flow:established,to_server; content:" HTTP/1.1|20|HTTP/1.1|0d 0a|"; depth:300; classtype:bad-unknown; sid:2014047; rev:3; metadata:created_at 2011_12_30, confidence Medium, signature_severity Major, updated_at 2019_07_26;)

Metadata

created at2011_12_30

confidenceMedium

signature severityMajor

updated at2019_07_26

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!