Home/Network IDS rules
IDS / IPS

Network IDS rules

1,435 rules · linked to T1566 · Snort / Suricata signatures
Network intrusion-detection signatures from open rulesets (ET Open, Snort Community, abuse.ch). These match malicious traffic patterns on the wire. Expand a rule to view its source link.

Rules

50 shown of 1,435
et-open social-engineering
ET PHISHING Dropbox/OneDrive Phishing Landing 2018-02-07
sid 2025327 format suricata
et-open credential-theft
ET PHISHING Successful Generic .EDU Phish (Legit Set)
sid 2025333 format suricata
et-open social-engineering
ET PHISHING ASB Bank Phishing Landing 2018-02-09 M1
sid 2025334 format suricata
et-open social-engineering
ET PHISHING ASB Bank Phishing Landing 2018-02-09 M2
sid 2025336 format suricata
et-open social-engineering
ET PHISHING OneDrive Phishing Landing 2018-02-12
sid 2025342 format suricata
et-open credential-theft
ET PHISHING Possible Successful Generic Phish (set) 2018-02-13
sid 2025354 format suricata
et-open credential-theft
ET PHISHING Successful Generic Multi-Account Phish 2018-02-16
sid 2025368 format suricata
et-open social-engineering
ET PHISHING OneDrive Phishing Landing 2018-03-08
sid 2025410 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish (set) 2018-03-12
sid 2025417 format suricata
et-open credential-theft
ET PHISHING Successful O2 Phish 2018-03-12
sid 2025419 format suricata
et-open credential-theft
ET PHISHING Successful Wells Fargo Phish 2018-03-12
sid 2025420 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish (set) 2018-03-13
sid 2025425 format suricata
et-open social-engineering
ET PHISHING OneDrive Phishing Landing 2018-04-09
sid 2025480 format suricata
et-open credential-theft
ET PHISHING Successful Halkbank Phish M1 2018-04-16
sid 2025503 format suricata
et-open credential-theft
ET PHISHING Successful Halkbank Phish M2 2018-04-16
sid 2025504 format suricata
et-open credential-theft
ET PHISHING Successful Facebook Phish 2018-04-16
sid 2025505 format suricata
et-open credential-theft
ET PHISHING Successful DenizBank Phish 2018-04-16
sid 2025506 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish (set) 2018-04-17
sid 2025513 format suricata
et-open social-engineering
ET PHISHING OneDrive Phishing Landing 2018-05-01
sid 2025550 format suricata
et-open credential-theft
ET PHISHING Possible Successful Generic Phish (set) 2018-05-02
sid 2025554 format suricata
et-open credential-theft
ET PHISHING Successful IRS Phish 2018-05-07
sid 2025562 format suricata
et-open social-engineering
ET PHISHING Possible TSB Bank Phishing Landing 2018-05-07
sid 2025563 format suricata
et-open credential-theft
ET PHISHING Possible Successful TSB Bank Phish 2018-05-07
sid 2025564 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish 2018-05-08 (set)
sid 2025565 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish 2018-05-08 (set)
sid 2025566 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish 2018-05-16 (set)
sid 2025579 format suricata
et-open credential-theft
ET PHISHING Possible Successful Generic Phish (set) 2018-05-31
sid 2025587 format suricata
et-open credential-theft
ET PHISHING Possible Successful Generic Phish (set) 2018-06-11
sid 2025588 format suricata
et-open credential-theft
ET PHISHING Possible Successful Generic Phish (set) 2018-06-14
sid 2025591 format suricata
et-open social-engineering
ET PHISHING US Bank Phishing Landing
sid 2025619 format suricata
et-open social-engineering
ET PHISHING Generic Phishing Kit Landing
sid 2025622 format suricata
et-open social-engineering
ET PHISHING [eSentire] OneDrive Phishing Landing 2018-06-15
sid 2025625 format suricata
et-open credential-theft
ET PHISHING [eSentire] Successful Generic Phish 2018-06-15
sid 2025628 format suricata
et-open credential-theft
ET PHISHING [eSentire] Successful Personalized Phish 2018-06-15
sid 2025629 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish 2018-06-27 (set)
sid 2025630 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish (set) 2018-06-29
sid 2025632 format suricata
et-open social-engineering
ET PHISHING AES Crypto Observed in Javascript - Possible Phishing Landing
sid 2025656 format suricata
et-open social-engineering
ET PHISHING AES Crypto Observed in Javascript - Possible Phishing Landing M1 Dec 28 2015
sid 2025657 format suricata
et-open social-engineering
ET PHISHING Suspicious Dropbox Page - Possible Phishing Landing
sid 2025659 format suricata
et-open social-engineering
ET PHISHING Generic Credential Phishing Landing Aug 11 2015
sid 2025665 format suricata
et-open social-engineering
ET PHISHING Suspicious Google Docs Page - Possible Phishing Landing
sid 2025669 format suricata
et-open social-engineering
ET PHISHING Suspicious Wordpress Redirect - Possible Phishing Landing Jan 7 2016
sid 2025671 format suricata
et-open social-engineering
ET PHISHING INTERAC Payment Multibank Phishing Landing Mar 14 2017
sid 2025679 format suricata
et-open social-engineering
ET PHISHING Generic Phishing Landing 2018-01-12
sid 2025685 format suricata
et-open social-engineering
ET PHISHING Suspicious Wordpress Redirect - Possible Phishing Landing (set) Jan 7
sid 2025696 format suricata
et-open credential-theft
ET PHISHING Possible Successful Generic Phish (set) 2018-07-19
sid 2025863 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish (set) 2018-07-19
sid 2025864 format suricata
et-open credential-theft
ET PHISHING [eSentire] Successful 163 Webmail Phish 2018-07-25
sid 2025893 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish (set) 2018-08-01
sid 2025932 format suricata
et-open credential-theft
ET PHISHING Successful Generic Phish Phish 2018-08-21
sid 2026006 format suricata
Showing 201-250 of 1,435
Prev 5 Next
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin