Network IDS rules

Home/Network IDS rules

IDS / IPS

1,435 rules · linked to T1566 · Snort / Suricata signatures

Network intrusion-detection signatures from open rulesets (ET Open, Snort Community, abuse.ch). These match malicious traffic patterns on the wire. Expand a rule to view its source link.

◈

Rules

50 shown of 1,435

et-open credential-theft

ET PHISHING Successful Apple Phish M2 Feb 06 2016

sid 2022498 format suricata

et-open credential-theft

ET PHISHING Successful Apple Phish M3 Feb 06 2016

sid 2022499 format suricata

et-open social-engineering

ET PHISHING JS Obfuscation - Possible Phishing 2016-03-01

sid 2022578 format suricata

et-open social-engineering

ET PHISHING Possible Phishing Landing - Data URI Inline Javascript Mar 07 2016

sid 2022597 format suricata

et-open credential-theft

ET PHISHING Successful Google Drive/Dropbox Phish Nov 20 2016

sid 2022967 format suricata

et-open credential-theft

ET PHISHING Successful Bank of Oklahoma Phish M1 Jul 21 2016

sid 2022978 format suricata

et-open credential-theft

ET PHISHING Successful Bank of Oklahoma Phish M2 Jul 21 2016

sid 2022979 format suricata

et-open credential-theft

ET PHISHING Successful Apple Suspended Account Phish M2 Aug 09 2016

sid 2023043 format suricata

et-open credential-theft

ET PHISHING Successful Excel Phish Aug 15 2016

sid 2023061 format suricata

et-open credential-theft

ET PHISHING Possible Successful Phish to .tk domain Aug 26 2016

sid 2023137 format suricata

et-open trojan-activity

ET PHISHING Form Data Submitted to yolasite.com - Possible Phishing

sid 2023139 format suricata

et-open credential-theft

ET PHISHING Successful XBOOMBER Paypal Phish Nov 28 2016

sid 2023558 format suricata

et-open credential-theft

ET PHISHING Successful iCloud Phish Oct 10 2016

sid 2023592 format suricata

et-open social-engineering

ET PHISHING Possible Phishing Redirect Dec 13 2016

sid 2023638 format suricata

et-open credential-theft

ET PHISHING Successful Bradesco Bank Phish M1 Jan 05 2017

sid 2023696 format suricata

et-open credential-theft

ET PHISHING Successful Bradesco Bank Phish M2 Jan 05 2017

sid 2023697 format suricata

et-open credential-theft

ET PHISHING Successful National Bank Phish Jan 05 2017

sid 2023698 format suricata

et-open credential-theft

ET PHISHING Possible Successful Generic Paypal Phish Jan 23 2016

sid 2023759 format suricata

et-open credential-theft

ET PHISHING Successful Paypal Phish Jan 23 2017

sid 2023760 format suricata

et-open credential-theft

ET PHISHING Successful RBC Royal Bank Phish Jan 30 2017

sid 2023770 format suricata

et-open credential-theft

ET PHISHING Possible Successful Ebay Phish Jan 30 2017

sid 2023776 format suricata

et-open credential-theft

ET PHISHING Possible Successful Chase Phish Feb 02 2017

sid 2023820 format suricata

et-open credential-theft

ET PHISHING Possible Successful Apple Phishing Domain Feb 02 2017

sid 2023821 format suricata

et-open credential-theft

ET PHISHING Possible Successful USAA Phishing Domain Feb 02 2017

sid 2023822 format suricata

et-open credential-theft

ET PHISHING Possible Successful Paypal Phishing Domain Feb 02 2017

sid 2023823 format suricata

et-open credential-theft

ET PHISHING Possible Successful Bank of America Phishing Domain Feb 02 2017

sid 2023824 format suricata

et-open credential-theft

ET PHISHING Possible Successful Google Drive Phishing Domain Feb 02 2017

sid 2023825 format suricata

et-open credential-theft

ET PHISHING Possible Successful Cartasi Phishing Domain Feb 02 2017

sid 2023826 format suricata

et-open credential-theft

ET PHISHING Possible Successful Linkedin Phishing Domain Feb 02 2017

sid 2023827 format suricata

et-open credential-theft

ET PHISHING Possible Successful Ebay Phishing Domain Feb 02 2017

sid 2023828 format suricata

et-open credential-theft

ET PHISHING Possible Successful Discover Phish Feb 02 2017

sid 2023829 format suricata

et-open credential-theft

ET PHISHING Possible Successful Craigslist Phishing Domain Feb 07 2017

sid 2023880 format suricata

et-open credential-theft

ET PHISHING Successful WeTransfer Phish Oct 04 2016

sid 2023964 format suricata

et-open credential-theft

ET PHISHING Successful Apple Account Phish Feb 17 2017

sid 2023999 format suricata

et-open credential-theft

ET PHISHING Successful Banco Itau (BR) Mobile Phish Feb 17 2017

sid 2024002 format suricata

et-open social-engineering

ET PHISHING Possible Phishing Verified by Visa title over non SSL Feb 17 2017

sid 2024003 format suricata

et-open social-engineering

ET PHISHING Suspicious JS Refresh - Possible Phishing Redirect Feb 24 2017

sid 2024007 format suricata

et-open credential-theft

ET PHISHING Successful Craigslist (RO) Phish M1 Feb 24 2017

sid 2024009 format suricata

et-open credential-theft

ET PHISHING Successful Craigslist (RO) Phish M2 Feb 24 2017

sid 2024010 format suricata

et-open credential-theft

ET PHISHING Successful Orderlink (IN) Phish Feb 24 2017

sid 2024015 format suricata

et-open credential-theft

ET PHISHING Successful National Bank Phish Mar 13 2017

sid 2024047 format suricata

et-open credential-theft

ET PHISHING Successful Instagram Phish Mar 14 2017

sid 2024051 format suricata

et-open credential-theft

ET PHISHING Successful Paypal Phish Mar 14 2017

sid 2024052 format suricata

et-open credential-theft

ET PHISHING Successful Apple Phish M1 Mar 15 2017

sid 2024060 format suricata

et-open credential-theft

ET PHISHING Successful Apple Phish M2 Mar 15 2017

sid 2024061 format suricata

et-open credential-theft

ET PHISHING Successful Paypal Phish Mar 22 2017

sid 2024100 format suricata

et-open credential-theft

ET PHISHING Successful RBC Royal Bank Phish Mar 27 2017

sid 2024101 format suricata

et-open credential-theft

ET PHISHING Successful HM Revenue & Customs Phish M1 Apr 07 2017

sid 2024184 format suricata

et-open credential-theft

ET PHISHING Successful HM Revenue & Customs Phish M2 Apr 07 2017

sid 2024185 format suricata

et-open policy-violation

ET PHISHING Lets Encrypt Free SSL Cert Observed with IDN/Punycode Domain - Possible Phishing

sid 2024227 format suricata

Showing 51-100 of 1,435

Prev 2 Next

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin