Home/Network IDS rules
IDS / IPS

Network IDS rules

6,060 rules · linked to T1190 · Snort / Suricata signatures
Network intrusion-detection signatures from open rulesets (ET Open, Snort Community, abuse.ch). These match malicious traffic patterns on the wire. Expand a rule to view its source link.

Rules

50 shown of 6,060
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHPNuke SQL injection attempt
sid 2001197 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHPNuke general SQL injection attempt
sid 2001202 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS e107 resetcore.php SQL Injection attempt
sid 2002663 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Galerie ShowGallery.php SQL Injection attempt
sid 2002671 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Cyphor show.php SQL injection attempt
sid 2002678 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHP phpMyAgenda rootagenda Remote File Include Attempt
sid 2002879 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHP Aardvark Topsites PHP CONFIG PATH Remote File Include Attempt
sid 2002901 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Gazi Download Portal SQL Injection Attempt -- down_indir.asp id UNION SELECT
sid 2004000 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Gazi Download Portal SQL Injection Attempt -- down_indir.asp id INSERT
sid 2004001 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Gazi Download Portal SQL Injection Attempt -- down_indir.asp id DELETE
sid 2004002 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Gazi Download Portal SQL Injection Attempt -- down_indir.asp id ASCII
sid 2004003 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Gazi Download Portal SQL Injection Attempt -- down_indir.asp id UPDATE
sid 2004004 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS ol bookmarks SQL Injection Attempt -- index.php id SELECT
sid 2004005 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS ol bookmarks SQL Injection Attempt -- index.php id UNION SELECT
sid 2004006 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS ol bookmarks SQL Injection Attempt -- index.php id INSERT
sid 2004007 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS ol bookmarks SQL Injection Attempt -- index.php id DELETE
sid 2004008 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS ol bookmarks SQL Injection Attempt -- index.php id ASCII
sid 2004009 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS ol bookmarks SQL Injection Attempt -- index.php id UPDATE
sid 2004010 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS WordPress SQL Injection Attempt -- admin-ajax.php cookie SELECT
sid 2004011 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS WordPress SQL Injection Attempt -- admin-ajax.php cookie UNION SELECT
sid 2004012 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS WordPress SQL Injection Attempt -- admin-ajax.php cookie INSERT
sid 2004013 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS WordPress SQL Injection Attempt -- admin-ajax.php cookie DELETE
sid 2004014 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS WordPress SQL Injection Attempt -- admin-ajax.php cookie ASCII
sid 2004015 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS WordPress SQL Injection Attempt -- admin-ajax.php cookie UPDATE
sid 2004016 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php style SELECT
sid 2004023 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php style UNION SELECT
sid 2004024 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php style INSERT
sid 2004025 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php style DELETE
sid 2004026 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php style ASCII
sid 2004027 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php style UPDATE
sid 2004028 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php langue SELECT
sid 2004029 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php langue UNION SELECT
sid 2004030 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php langue INSERT
sid 2004031 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php langue DELETE
sid 2004032 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php langue ASCII
sid 2004033 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS BtiTracker SQL Injection Attempt -- account_change.php langue UPDATE
sid 2004034 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS CubeCart SQL Injection Attempt -- cart.inc.php SELECT
sid 2004035 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS CubeCart SQL Injection Attempt -- cart.inc.php UNION SELECT
sid 2004036 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS CubeCart SQL Injection Attempt -- cart.inc.php INSERT
sid 2004037 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS CubeCart SQL Injection Attempt -- cart.inc.php DELETE
sid 2004038 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS CubeCart SQL Injection Attempt -- cart.inc.php ASCII
sid 2004039 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS CubeCart SQL Injection Attempt -- cart.inc.php UPDATE
sid 2004040 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHPEcho CMS SQL Injection Attempt -- gallery.php id SELECT
sid 2004041 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHPEcho CMS SQL Injection Attempt -- gallery.php id UNION SELECT
sid 2004042 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHPEcho CMS SQL Injection Attempt -- gallery.php id INSERT
sid 2004043 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHPEcho CMS SQL Injection Attempt -- gallery.php id DELETE
sid 2004044 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHPEcho CMS SQL Injection Attempt -- gallery.php id ASCII
sid 2004045 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS PHPEcho CMS SQL Injection Attempt -- gallery.php id UPDATE
sid 2004046 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen SELECT
sid 2004047 format suricata
et-open web-application-attack
ET WEB_SPECIFIC_APPS Dokeos SQL Injection Attempt -- courseLog.php scormcontopen UNION SELECT
sid 2004048 format suricata
Showing 1-50 of 6,060
Prev 1 Next
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin