ET SCAN Possible SSL Brute Force attack or Site Crawl

7.0.35.0SID: 2001553Rev: 9Disabled6 views
Sourceet/open
Fileemerging-scan.rules
CreatedJuly 30, 2010
UpdatedMarch 17, 2024
Classificationattempted-dos
alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS 443 (msg:"ET SCAN Possible SSL Brute Force attack or Site Crawl"; flow:established,to_server; flags:S; threshold:type threshold, track by_src, count 100, seconds 60; classtype:attempted-dos; sid:2001553; rev:9; metadata:created_at 2010_07_30, confidence Medium, signature_severity Informational, updated_at 2024_03_17;)

Metadata

created at2010_07_30
confidenceMedium
signature severityInformational
updated at2024_03_17

Comments (0)

Please sign in to leave a comment.
Sign in

No comments yet. Be the first to comment!