ET POLICY DNS Query for Observed CVE-2021-44228 Security Scanner Domain (dns .cyberwar .nl)
Sourceet/open
CreatedDecember 21, 2021
UpdatedDecember 21, 2021
Classificationpolicy-violation
alert dns $HOME_NET any -> any any (msg:"ET POLICY DNS Query for Observed CVE-2021-44228 Security Scanner Domain (dns .cyberwar .nl)"; dns.query; dotprefix; content:".dns.cyberwar.nl"; nocase; endswith; reference:cve,2021-44228; classtype:policy-violation; sid:2034829; rev:1; metadata:attack_target Client_and_Server, created_at 2021_12_21, cve CVE_2021_44228, deployment Perimeter, confidence High, signature_severity Informational, tag CISA_KEV, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2021_12_21;)
References
| cve | 2021-44228 |
Metadata
attack targetClient_and_Server
created at2021_12_21
deploymentPerimeter
confidenceHigh
signature severityInformational
tagDescription_Generated_By_Proofpoint_Nexus
updated at2021_12_21
Comments (0)
Please sign in to leave a comment.
Sign inNo comments yet. Be the first to comment!