Documents

The following setup guides have been contributed by members of the Snort Community for your use. Comments and questions on these documents should be submitted directly to the author by clicking on their names below.


Latest rule documents - Search
1:66727
This rule looks for path traversal sequences present in the following parameters in HTTP requests sent to the /en-US/splunkd/__raw/services/data/lookup_backup/backup endpoint on Splunk Backup web applications: file_time.
1:66726
This rule looks for path traversal sequences present in the following parameters in HTTP requests sent to the /en-US/splunkd/__raw/services/data/lookup_backup/backup endpoint on Splunk Backup web applications: file_time.
1:66725
This rule looks for path traversal sequences present in the following parameters in HTTP requests sent to the /en-US/splunkd/__raw/services/data/lookup_backup/backup endpoint on Splunk Backup web applications: file_time.
1:66724
This rule looks for strings known to be specific to files that are intended to exploit an arbitrary file write vulnerability in a Git server.
1:66723
This rule looks for strings known to be specific to files that are intended to exploit an arbitrary file write vulnerability in a Git server.
1:66720
This rule looks for the presence of the parameter "cpanel_jsonapi_func=redisAble" in the HTTP request query. Successful exploitation could allow an attacker to gain elevated privileges on the targeted server.