Home/Network IDS rules
IDS / IPS

Network IDS rules

10 rules · linked to T1593 · Snort / Suricata signatures
Network intrusion-detection signatures from open rulesets (ET Open, Snort Community, abuse.ch). These match malicious traffic patterns on the wire. Expand a rule to view its source link.

Rules

10 shown of 10
et-open trojan-activity
ET MALWARE Yandexbot Request Outbound
sid 2013254 format suricata
et-open misc-activity
ET POLICY Majestic12 User-Agent Request Outbound
sid 2013256 format suricata
et-open not-suspicious
ET SCAN Google Webcrawler User-Agent (Mediapartners-Google)
sid 2032978 format suricata
et-open not-suspicious
ET SCAN Yandex Webcrawler User-Agent (YandexBot)
sid 2032979 format suricata
et-open not-suspicious
ET SCAN DuckDuckGo Webcrawler User-Agent (DuckDuckBot)
sid 2032980 format suricata
et-open not-suspicious
ET SCAN Bing Webcrawler User-Agent (BingBot)
sid 2032981 format suricata
et-open not-suspicious
ET SCAN Naver Webcrawler User-Agent (Naver.me)
sid 2032982 format suricata
et-open not-suspicious
ET POLICY Ask Webcrawler User-Agent
sid 2033164 format suricata
et-open not-suspicious
ET SCAN Exabot Webcrawler User Agent
sid 2033165 format suricata
et-open not-suspicious
ET SCAN AOL Webcrawler User-Agent
sid 2033166 format suricata
Showing 1-10 of 10
Prev 1 Next
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin