본문 바로가기

UTM

(1)

2023/08/11 UTM Snort(Sniffer and more) Alert tcp $EXTERNAL_NET any -> $HOME_NET any (msg:"HTTP GET FLOODING"; content:"GET /HTTP/1."; nocase; depth:13; sid:1000001; threshold:type threshold, track by_dst, count 10, seconds 1;) 기본 룰 설정 1. BruteForcing(hydra) Alert tcp any any -> 192.168.132.1/255.255.255 80 (msg:"Bruteforcing"; content:"POST"; http_method; uricontent:"/member/member_login_check.asp"; nocase; th..

이전 1 다음

티스토리툴바