EmergingThreats> Main Web>2003508 (revision 1)EditAttach

alert tcp $EXTERNAL_NET any -> $HTTP_SERVERS $HTTP_PORTS (msg:"BLEEDING-EDGE WEB Wordpress wp-login.php redirect_to credentials stealing attempt"; flow:to_server,established; uricontent:"/wp-login.php"; nocase; uricontent:"redirect_to"; pcre:"redirect_to=(ht|f)tps?\://"; classtype:web-application-attack; reference:url,www.inliniac.net/blog/?p=71; sid:2003508; rev:1;)

Added 2007-03-20 16:06:59 UTC


Edit | Attach | Print version | History: r5 | r4 < r3 < r2 < r1 | Backlinks | Raw View | Raw edit | More topic actions...
Topic revision: r1 - 2007-03-20 - VictorJ?
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats