ET SCAN Possible SSL Brute Force attack or Site Crawl

7.0.35.0SID: 2001553Rev: 8Disabled6 views
Sourceet/open
Fileemerging-scan.rules
CreatedJuly 30, 2010
UpdatedJuly 26, 2019
Classificationattempted-dos
alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow:established,to_server; flags:S; threshold:type threshold, track by_src, count 100, seconds 60; classtype:attempted-dos; sid:2001553; rev:8; metadata:created_at 2010_07_30, confidence Medium, signature_severity Informational, updated_at 2019_07_26;)

Metadata

created at2010_07_30
confidenceMedium
signature severityInformational
updated at2019_07_26

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!