Recent Changes in Main Web retrieved at 11:00 (GMT)

Statistics for Main Web Month: Topic views: Topic saves: File uploads: Most popular topic views: Top contributors for topic save and...
1. Introduction We`ve tried to make Sagan as simple and easy to use as possible. For the most part, compiling and installation is done your typical Unix way. That...
Sagan rule options and definitions: {alert drop} alert tcp $EXTERNAL NET any $HOME NET 22 The first statement of a rule contains either `alert` or `drop...
alert syslog $HOME NET any $HOME NET any (msg: ` WINDOWS MISC Fan failure detected`; content:` 10 3a Fan `; content:` has failed`; classtype: hardware event;...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv4 source route attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0152...
alert tcp $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv4 SYN flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0153 22 `; parse...
alert icmp $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv4 ICMP flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0154 22 `;...
alert udp $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv4 UDP flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0155 22 `; parse...
alert udp $EXTERNAL NET any $HOME NET 500 (msg: ` WATCHGUARD IPv4 IPSEC flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0156 22 `;...
alert udp $EXTERNAL NET any $HOME NET 500 (msg: ` WATCHGUARD IPv4 IKE flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0157 22 `; parse...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv4 scan attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0158 22 `; parse...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv4 port scan attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0159 22 `...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv4 DDOS attack against a server was detected`; program: WatchGuard ; content: `msg id 22...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv4 DDOS attack from a client was detected`; program: WatchGuard ; content: `msg id 22 3000...
alert tcp $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv6 SYN flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0162 22 `; parse...
alert icmp $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv6 ICMP flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0163 22 `;...
alert udp $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv6 UDP flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0164 22 `; classtype...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv6 IPSEC flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0165...
alert udp $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPv6 IKE flood attack was detected`; program: WatchGuard ; content: `msg id 22 3000 0166 22 `; classtype...
alert tcp $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD Traffic was detected to or from a blocked site`; program: WatchGuard ; content: `msg id 22 3000...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IP spoofing was detected from the IP address specified`; program: WatchGuard ; content: `msg id...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD Possible loop or ARP spoofing detected`; program: WatchGuard ; content: `msg id 22 3000 012E...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Firewall is shutting down`; program: WatchGuard ; content: `msg id 22 3000 0028 22 `; classtype: program...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD Detected an ARP spoofing attack`; program: WatchGuard ; content: `msg id 22 3000 012C 22 `; classtype...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Feature key for Application Control subscription has expired`; program: WatchGuard ; content: `msg...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Feature key for Intrusion Prevention Services subscription has expired`; program: WatchGuard ; content...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Capture stopped due to the specified reason`; program: WatchGuard ; content: `msg id 22 3113...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Starting wireless AP service`; program: WatchGuard ; content: `msg id 22 3100 0052 22 `; classtype...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD Wireless access point model mismatch`; program: WatchGuard ; content: `msg id 22 6100 0002...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Wireless access point activation failure`; program: WatchGuard ; content: `msg id 22 6100 0003...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD APT threat identification and notification`; program: WatchGuard ; content: `msg id 22 0F00...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD Gateway AntiVirus (GAV) detected a virus or malware in an email attachment.`; program: WatchGuard...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Gateway AntiVirus (GAV) cannot perform scan`; program: WatchGuard ; content: `msg id 22 1BFF 000E...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD APT threat detected`; program: WatchGuard ; content: `msg id 22 1BFF 0028 22 `; parse proto; parse...
alert tcp $EXTERNAL NET any $HOME NET $FTP PORT (msg: ` WATCHGUARD Gateway AntiVirus (GAV) virus found FTP`; program: WatchGuard ; content: `msg id 22 1CFF...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Gateway AntiVirus (GAV) scan error`; program: WatchGuard ; content: `msg id 22 1CFF 000F 22 `; classtype...
alert tcp $EXTERNAL NET any $HOME NET $POP3 PORT (msg: ` WATCHGUARD Gateway AntiVirus (GAV) virus found POP3`; program: WatchGuard ; content: `msg id 22 21FF...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD Administrative accounts reset to default`; program: WatchGuard ; content: `msg id 22 0101...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD LIVESECURITY feature not found`; program: WatchGuard ; content: `msg id 22 5501 0002 22 `; classtype...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD Member promoted to master`; program: WatchGuard ; content: `msg id 22 3900 0005 22 `; classtype...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Failed to start the signature update for the specified services`; program: WatchGuard ; content: `msg...
alert tcp $EXTERNAL NET any $HOME NET $PPTP PORT (msg: ` WATCHGUARD VPN User login`; program: WatchGuard ; content: `msg id 22 1400 0000 22 `; parse src ip...
alert syslog $EXTERNAL NET any $HOME NET any (msg:` WATCHGUARD Failed Login Attempt Brute force WATCHGUARD 5/5 `; program: WatchGuard ; content: `msg id...
alert tcp $EXTERNAL NET any $HOME NET $HTTPS PORT (msg: ` WATCHGUARD GEOIP VPN login from outside HOME COUNTRY`; program WatchGuard ; content: `msg id 22...
alert syslog $HOME NET any $EXTERNAL NET $FTP PORT (msg: ` WATCHGUARD GEOIP FTP file transfer to outside HOME COUNTRY`; program: WatchGuard ; country code: track...
alert syslog $HOME NET any $EXTERNAL NET any (msg: ` WATCHGUARD Signature update process for the specified version failed`; program: WatchGuard ; content: `msg...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IP spoofing was detected from the IP address specified`; program: WatchGuard ; content: `msg id...
alert syslog $HOME NET any $HOME NET any (msg: ` WATCHGUARD Wireless Access Point Model Mismatch`; program: WatchGuard ; content: `msg id 22 6100 0002 22 `; class...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` WATCHGUARD IPS detected an intrusion in the client request or server response content body`; program: WatchGuard...
alert syslog $EXTERNAL NET any $HOME NET any (msg: ` CISCO MERAKI Malicious file blocked by amp`; content: `malicious action block`; classtype: suspicious traffic...

«Previous   1  2  3  4  5  6  7  8  9  10  11  12  13  14  15  16   Next»

Show 10, 20, 50, 100, 500, 1000 results per page, or show all.

Related topics: RSS feed, rounded corners RSS feed, ATOM feed, WebNotify, site changes, site map

Edit | Attach | Watch | Print version | History: r5 < r4 < r3 < r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions
Topic revision: r5 - 2006-11-15 - TWikiContributor
 
This site is powered by the TWiki collaboration platform Powered by PerlCopyright © 2008-2017 by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback