Network IDS rules · threatengine.sh

Home/Network IDS rules

IDS / IPS

Network IDS rules

81 rules · linked to T1083 · Snort / Suricata signatures

Network intrusion-detection signatures from open rulesets (ET Open, Snort Community, abuse.ch). These match malicious traffic patterns on the wire. Expand a rule to view its source link.

◈

Rules

50 shown of 81

et-open web-application-attack

ET WEB_SERVER HP OpenView Network Node Manager CGI Directory Traversal

sid 2008171 format suricata

et-open web-application-attack

ET WEB_SPECIFIC_APPS Adobe JRun Directory Traversal

sid 2010194 format suricata

et-open web-application-attack

ET WEB_SPECIFIC_APPS Business Objects Crystal Reports Web Form Viewer Directory Traversal Attempt

sid 2011113 format suricata

et-open web-application-attack

ET WEB_SERVER ColdFusion Path Traversal (locale 1/5)

sid 2011358 format suricata

et-open web-application-attack

ET WEB_SERVER ColdFusion Path Traversal (locale 2/5)

sid 2011359 format suricata

et-open web-application-attack

ET WEB_SERVER ColdFusion Path Traversal (locale 3/5)

sid 2011360 format suricata

et-open web-application-attack

ET WEB_SERVER ColdFusion Path Traversal (locale 5/5)

sid 2011362 format suricata

et-open web-application-attack

ET WEB_SPECIFIC_APPS f-fileman direkt Parameter Directory Traversal Vulnerability

sid 2012835 format suricata

et-open web-application-attack

ET WEB_SPECIFIC_APPS Joomla Component com_jr_questionnaire Directory Traversal Attempt

sid 2013678 format suricata

et-open web-application-attack

ET WEB_SPECIFIC_APPS Joomla component Simple File Lister sflDir Parameter directory traversal attempt

sid 2013870 format suricata

et-open web-application-attack

ET WEB_SERVER possible SAP Crystal Report Server 2008 path parameter Directory Traversal vulnerability

sid 2015035 format suricata

et-open web-application-attack

ET WEB_SPECIFIC_APPS Oracle JSF2 Path Traversal Attempt

sid 2017611 format suricata

et-open attempted-admin

ET WEB_SERVER Possible SUPERMICRO IPMI url_redirect.cgi Directory Traversal Attempt

sid 2017688 format suricata

et-open attempted-user

ET WEB_SERVER Coldfusion cfcexplorer Directory Traversal

sid 2017875 format suricata

et-open misc-attack

ET WEB_SPECIFIC_APPS Webmin Directory Traversal

sid 2019157 format suricata

et-open web-application-attack

ET WEB_SERVER ElasticSearch Directory Traversal Attempt (CVE-2015-3337)

sid 2021138 format suricata

et-open trojan-activity

ET EXPLOIT Possible Magento Directory Traversal Attempt

sid 2021951 format suricata

et-open attempted-admin

ET EXPLOIT HP Printer Attempted Path Traversal via PJL

sid 2024404 format suricata

et-open attempted-user

ET EXPLOIT Cisco Adaptive Security Appliance - Path Traversal

sid 2025764 format suricata

et-open attempted-user

ET WEB_SPECIFIC_APPS Dicoogle PACS 2.5.0 - Directory Traversal

sid 2025825 format suricata

et-open attempted-admin

ET EXPLOIT WinRAR WinAce Containing CVE-2018-20250 Inbound - Path Traversal leading to RCE

sid 2027310 format suricata

et-open attempted-recon

ET EXPLOIT Attempted Directory Traversal via HTTP Cookie (CVE-2020-9484)

sid 2030256 format suricata

et-open attempted-admin

ET EXPLOIT Cisco AnyConnect Path Traversal Priv Esc (CVE-2020-3153)

sid 2030280 format suricata

et-open attempted-admin

ET EXPLOIT VMware Spring Cloud Directory Traversal (CVE-2020-5405)

sid 2030336 format suricata

et-open attempted-admin

ET EXPLOIT VMware Spring Cloud Directory Traversal (CVE-2020-5410)

sid 2030337 format suricata

et-open attempted-user

ET EXPLOIT SAP NetWeaver AS Directory Traversal Attempt Inbound (CVE-2020-6286)

sid 2030549 format suricata

et-open attempted-admin

ET WEB_SPECIFIC_APPS Citrix XenMobile Server Directory Traversal Attempt Inbound (CVE-2020-8209)

sid 2031221 format suricata

et-open attempted-admin

ET EXPLOIT Cisco Data Center Network Manager Directory Traversal Inbound (CVE-2019-15980)

sid 2033412 format suricata

et-open attempted-admin

ET WEB_SPECIFIC_APPS Kibana Path Traversal Inbound (CVE-2018-17246)

sid 2033453 format suricata

et-open attempted-admin

ET EXPLOIT Fortinet FortiOS/FortiProxy SSL VPN Web Portal Path Traversal (CVE-2018-13379)

sid 2034005 format suricata

et-open attempted-admin

ET EXPLOIT Nagios XI Post-Auth Path Traversal (CVE-2021-37343)

sid 2034017 format suricata

et-open attempted-admin

ET EXPLOIT Apache HTTP Server 2.4.49 - Path Traversal Attempt (CVE-2021-41773) M1

sid 2034124 format suricata

et-open attempted-admin

ET EXPLOIT Apache HTTP Server 2.4.49 - Path Traversal Attempt (CVE-2021-41773) M2

sid 2034125 format suricata

et-open attempted-admin

ET EXPLOIT Apache HTTP Server 2.4.49 - Path Traversal Attempt (CVE-2021-41773) M3

sid 2034128 format suricata

et-open attempted-admin

ET EXPLOIT Aviatrix Controller Unrestricted File Upload with Path Traversal Inbound (CVE-2021-40870)

sid 2034159 format suricata

et-open attempted-admin

ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M1

sid 2034172 format suricata

et-open attempted-admin

ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (CVE-2021-42013) M2

sid 2034173 format suricata

et-open attempted-admin

ET EXPLOIT Apache HTTP Server - Path Traversal Attempt (Unassigned CVE)

sid 2034174 format suricata

et-open attempted-admin

ET EXPLOIT Confluence Server Path Traversal Vulnerability (CVE-2019-3398)

sid 2034261 format suricata

et-open attempted-admin

ET EXPLOIT Cisco ASA and Firepower Path Traversal Vulnerability M1 (CVE-2020-3452)

sid 2034262 format suricata

et-open attempted-admin

ET EXPLOIT Cisco ASA and Firepower Path Traversal Vulnerability M2 (CVE-2020-3452)

sid 2034263 format suricata

et-open attempted-admin

ET EXPLOIT NodeBB Path Traversal (CVE-2021-43788)

sid 2034590 format suricata

et-open attempted-admin

ET EXPLOIT Grafana 8.x Path Traversal (CVE-2021-43798)

sid 2034629 format suricata

et-open attempted-admin

ET EXPLOIT SonicWall SMA 100 Series - Unauthenticated File Upload Path Traversal (CVE-2021-20040)

sid 2034896 format suricata

et-open attempted-admin

ET EXPLOIT VMware SD-WAN Orchestrator Path Traversal (CVE-2020-4000)

sid 2035103 format suricata

et-open attempted-admin

ET EXPLOIT Cisco Security Manager Path Traversal - athena (CVE-2020-27130)

sid 2035105 format suricata

et-open attempted-admin

ET EXPLOIT Cisco Security Manager Path Traversal - cwhp (CVE-2020-27130)

sid 2035106 format suricata

et-open web-application-attack

ET EXPLOIT Cisco Viptela vManage Directory Traversal (CVE-2020-27128)

sid 2035136 format suricata

et-open web-application-attack

ET EXPLOIT Cisco SD-WAN vManage Software Directory Traversal (CVE-2020-26073)

sid 2035137 format suricata

et-open attempted-admin

ET EXPLOIT Possible ManageEngine ADAudit Plus Directory Traversal Leading to Deserialization

sid 2037216 format suricata

Showing 1-50 of 81

Prev 1 Next

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin