ET WEB_SPECIFIC_APPS SAP Possible CTC Auth/HTTP Verb Bypass Attempt

SID: 2017802Rev: 40 viewsHistory

Sourceet/open

CreatedDecember 6, 2013

UpdatedApril 27, 2020

Classificationattempted-admin

alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"ET WEB_SPECIFIC_APPS SAP Possible CTC Auth/HTTP Verb Bypass Attempt"; flow:to_server,established; http.method; content:"HEAD"; nocase; http.uri; content:"/ctc/"; reference:url,media.blackhat.com/us-13/US-13-Polyakov-Practical-Pentesting-of-ERPs-and-Business-Applications-Slides.pdf; classtype:attempted-admin; sid:2017802; rev:4; metadata:created_at 2013_12_06, confidence Medium, signature_severity Major, updated_at 2020_04_27;)

References

url	media.blackhat.com/us-13/US-13-Polyakov-Practical-Pentesting-of-ERPs-and-Business-Applications-Slides.pdf

Metadata

created at2013_12_06

confidenceMedium

signature severityMajor

updated at2020_04_27

Comments (0)

Please sign in to leave a comment.

No comments yet. Be the first to comment!