forked from decal/werdlists
-
Notifications
You must be signed in to change notification settings - Fork 4
/
Copy pathsymantec-attack-signatures.txt
5900 lines (5899 loc) · 240 KB
/
symantec-attack-signatures.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1000
AOL IM External App Request BO
AOL IM Game Request BO
Adobe Reader GetIcon BO
Adware: Adware.DNSUnlocker Activity 2
Adware: Adware.Funshion Activity
Adware: Adware.Gen Activity
Adware: Adware.Gen Activity 34
Adware: Adware.Gen Activity 6
Adware: Adware.Gen Activity 7
Alcarys Worm Propagation
Alien Arena 2007 Nickname Format String
Aliz Worm Propagation
Alt-N WebAdmin USER Buffer Overflow
Apost Worm Propagation
ArcServe Discovery SERVICEPC BO
Atack: Ruby On Rails CVE-2016-0752
Attack OpenOffice OLE Buffer Overflow
Attack: 7T IGSS Server CVE-2011-1565
Attack: 7T IGSS Server Directory Traversal CVE-2011-1565
Attack: A-PDF WAV to MP3 Converter BO
Attack: AASync "LIST" Command Buffer Overflow
Attack: ABB MicroSCADA "wserver.exe" RCE
Attack: ABB MicroSCADA "wserver.exe" Remote Code Execution
Attack: ABBS Audio Media Player LST File BO
Attack: ACDSee Fotoslate PLP File CVE-2011-2595
Attack: ACDSee Malicious XMB File
Attack: ADB Malicious APK File Upload
Attack: ALLMediaServer Buffer Overflow
Attack: ALLPlayer m3u File BO
Attack: ASUS Net4Switch CVE-2012-4924
Attack: ATutor SQL Injection Attack
Attack: Ability Server CVE 2004-1626
Attack: AbsoluteFTP LIST Command BO
Attack: Accutech Manager CVE-2013-0658
Attack: Acrobat PDF Suspicious File Download 5
Attack: ActFax Server Import Users from File BO
Attack: Address Space Layout Randomization - Invalid Memory Access
Attack: Adobe 3D Objects
Attack: Adobe Acrobat Reader CVE-2013-0460
Attack: Adobe Embedded SWF CVE-2011-0611
Attack: Adobe Illustrator CVE-2009-4195
Attack: Adobe InDesign Server Arbitrary Script Execution
Attack: Adobe MailTo CVE-2007-5020
Attack: Adobe Photoshop Collada CVE-2012-2052
Attack: Adobe Shockwave rcsL Memory Corruption CVE-2010-3653
Attack: Adrenalin Player asx File BO
Attack: Adrenalin Player wax File BO
Attack: Advantech WebAccess webvrpcs Service BwWebSvc ProjectName
Attack: Advantech WebAccess webvrpcs Service DrawSrv TagGroup
Attack: Agilent Feature Extraction CVE-2015-2092
Attack: AjaXplorer Remote Command Injection
Attack: Aloaha PDF Suite CVE-2013-4978
Attack: AmmSoft ScriptFTP CVE-2011-3976
Attack: Android Metasploit Exploit Download
Attack: Apache ActiveMQ RCE
Attack: Apache Jetspeed Arbitrary File Upload
Attack: Apache Jetspeed User Manager Service SQL Injection
Attack: Apache Mod Rewrite LDAP CVE-2006-3747
Attack: Apache OpenOffice Malicious Macro
Attack: Apache Struts CVE 2017 12611 2
Attack: Apache Struts CVE 2017 9805 2
Attack: Apache Struts CVE-2011-3923
Attack: Apache Struts CVE-2013-1966
Attack: Apache Struts CVE-2013-2251 Code Execution
Attack: Apache Struts CVE-2013-2251 Code Execution 2
Attack: Apache Struts CVE-2013-2251 Code Execution 3
Attack: Apache Struts CVE-2016-3087 RCE
Attack: Apache Struts CVE-2017-5638
Attack: Apache Struts Dynamic Method Invocation RCE 2
Attack: Apache Struts Dynamic Method Invocation RCE CVE-2016-3081
Attack: Apache Struts ExceptionDelegator CVE-2012-0391
Attack: Apache Struts ParameterInterceptor CVE-2010-1870
Attack: Apple PICT file PnSize CVE-2011-0257
Attack: Apple QuickTime CVE-2012-0667
Attack: Artweaver CVE-2013-2576
Attack: Artweaver CVE-2013-3481
Attack: Asuswrt Remote Command Execution CVE-2014-9583
Attack: Attempt to Disable Java Security Manager
Attack: AudioCoder .m3u File Buffer Overflow Vulnerability
Attack: Audiotran CVE-2009-0476
Attack: Audiotran PLS File Buffer Overflow
Attack: Autodesk 3DStudio CVE-2009-3577
Attack: Autonomy KeyView CVE-2011-1213
Attack: Autosploit Payload Activity
Attack: Auxilium RateMyPet Arbitrary File Upload
Attack: Auxilium RateMyPet Arbitrary File Upload 2
Attack: Avaya IP Office Customer Call Reporter CVE-2012-3811
Attack: Avaya Portable Device Manager 2
Attack: Aviosoft DTV Player CVE-2011-4496
Attack: Azeotech DAQFactory NETB Datagram CVE-2011-3492
Attack: BS.Player Playlist File BO
Attack: Basilic diff.php RCE
Attack: BigAnt IM Server USV Request Buffer Overflow
Attack: Bind DOS CVE-2015-5477
Attack: BladeVideo HDTV Player Buffer Overflow
Attack: BlazeDVD PLF FIle BO
Attack: BlueCoat Auth Agent
Attack: Bluwimps SMB Activity
Attack: Borland Accurev Reprise License Server Activate_doit
Attack: Borland Accurev Reprise License Server RCE
Attack: Borland CaliberRM CVE-2008-0311
Attack: Borland InterBase Malformed Packet Integer Overflow
Attack: CA eTrust AntiVirus Malicious CAB
Attack: CCMPlayer Playlist File BO
Attack: CCTV WebCam CodeExecution Attack
Attack: CISCO ASA RCE CVE-2018-0101
Attack: CISCO Smart Install RCE CVE-2018-0171
Attack: CVE-2016-6433 Post Authentication UserAdd Vulnerability
Attack: CVE-2016-6435 Local File Inclusion Vulnerability
Attack: CastRipper CVE-2009-1667
Attack: Centreon Web Interface Remote Code Execution
Attack: Cisco Adaptive Security Appliance Buffer Overflow
Attack: Cisco Gateway Router Remote Code Execution Attack
Attack: Citrix Provisioning Services BO
Attack: Citrix Provisioning Services Streamprocess
Attack: Claymore Dual Miner RCE CVE-2018-1000049
Attack: CommuniCrypt Mail AddAttachments
Attack: Computer Associates ARCserve D2D Information Disclosure
Attack: Computer Associates License CGR CVE-2005-0583
Attack: Computer Associates Message CVE-2005-2668
Attack: Core Player M3U Playlist BO
Attack: CoreImpact Exploit Attempt
Attack: Corel PDF Fusion CVE-2013-3248 2
Attack: Csound CVE-2012-0270
Attack: Cursorarts Filewrangler "LIST" Command Buffer Overflow
Attack: CuteFlow Arbitrary File Upload
Attack: CuteZip .zip File Buffer Overflow Vulnerability 2
Attack: Cyclope Employee Surveillance Solution v6 SQL Injection
Attack: Cytel StatXact Studio CY3 File
Attack: Cytel StatXact Studio CY3 File 2
Attack: D-Link DIR-620 CVE-2018-6211
Attack: D-Link DSL 2750B Arbitrary Command Execution
Attack: DBLTek Backdoor Login
Attack: DJ Studio Pro CVE-2009-4656
Attack: DJ Studio Pro CVE-2009-4656 2
Attack: DLL Injection of Network-Sourced DLL
Attack: DNS Bind CVE-2016-2776
Attack: DNS ISC Bind CVE-2017-3143
Attack: DVD X Player CVE-2007-3068
Attack: Dassault Systemes Catia CVE-2014-2072
Attack: Data Execution Protection - Execution of Non-Executable
Attack: Dell KACE K1000 Arbitrary File Upload
Attack: Destiny Media Player CVE-2009-3429
Attack: Digital Music Pad .pls File Remote Buffer Overflow
Attack: Disk Pulse Enterprise BufferOverflow Attack
Attack: DiskBoss Buffer Overflow Attack
Attack: DiskSavvy Buffer Overflow Attack
Attack: Docker Daemon Unauthorized Mount Attempt
Attack: Drupal PHP Remote Code execution
Attack: EMC AlphaStor CVE-2013-0928
Attack: EMC NetWorker CVE-2012-2288
Attack: EMC NetWorker CVE-2012-2288 2
Attack: ERDAS ER Viewer CVE-2013-0726
Attack: ERDAS ER Viewer CVE-2013-0726 2
Attack: ERDAS ER Viewer CVE-2013-3482
Attack: ERDAS ER Viewer CVE-2013-3482 2
Attack: ESTsoft ALZip CVE-2011-1336
Attack: EXIM SMTP Host Verify Buffer Overflow CVE-2015-0235
Attack: Easy File Sharing GET Request Buffer Overflow 2
Attack: Eaton Elcsoft Buffer Overflow
Attack: Eaton Network Shutdown Module Arbitrary PHP Code Execution
Attack: Eir D1000 Modem CWMP Router Code Execution
Attack: Ektron CMS CVE-2012-5357
Attack: Ektron CMS CVE-2012-5357 2
Attack: Elecard Mpeg Player m3u File BO
Attack: ElectraSoft 32Bit "LIST" Command Buffer Overflow
Attack: Energizer DUO CVE-2010-0103
Attack: Enterasys Netsight CVE-2011-5227
Attack: Exim Remote Code Execution CVE-2017-16943
Attack: Ezhometech EzServer Buffer Overflow
Attack: Ezhometech EzServer Buffer Overflow 2
Attack: FTP Generic Command Overflow
Attack: FTPPad LIST Command BO
Attack: Family Connections Remote Command Execution
Attack: Fat Player CVE-2009-4962
Attack: FeedDemon outline Tag Buffer Overflow Vulnerability
Attack: Firebird Database Attach CVE-2007-5243
Attack: Firebird SQL XDR Protocol CVE-2008-0387
Attack: FosCam Shell Command Injection CVE-2018-6831
Attack: Foxit Reader Arbitrary Code Execution
Attack: Foxit Reader Title Parsing
Attack: Free MP3 CD Ripper Buffer Overflow
Attack: Free MP3 CD Ripper Buffer Overflow 2
Attack: Freefloat FTP WMI File Upload
Attack: GIMP BO CVE-2012-2763
Attack: GSM SIM Utility .sms File Buffer Overflow Vulnerability
Attack: GSM SIM Utility .sms File Buffer Overflow Vulnerability 2
Attack: Generic Metasploit JSP File Upload Requests
Attack: Gitorious Remote Command Execution
Attack: HP Application Lifecycle Management Remote Code Execution
Attack: HP Data Protector CVE-2010-3007
Attack: HP Data Protector CVE-2012-0122
Attack: HP Data Protector CVE-2012-0124
Attack: HP Data Protector CVE-2013-2347
Attack: HP Data Protector CVE-2013-6194
Attack: HP Data Protector EXEC_INTEGUTIL RCE
Attack: HP Dataprotector cmd exec CVE-2014-2623
Attack: HP Intelligent Management Center CVE-2012-5201
Attack: HP Intelligent Management Center CVE-2012-5202
Attack: HP Intelligent Management Center CVE-2012-5204
Attack: HP Intelligent Management Centre BO
Attack: HP Intelligent Management Centre BO 2 CVE-2012-3274
Attack: HP Network NNMi PMD Buffer Overflow CVE-2014-2624
Attack: HP Network Node Manager CVE-2011-0271
Attack: HP OpenView NNM CVE-2008-1697
Attack: HP OpenView NNM CVE-2011-0267
Attack: HP OpenView NNM Request CVE-2008-0067
Attack: HP OpenView Network Node Manager CVE-2011-3167
Attack: HP OpenView OmniInet Opcode 20 CVE-2011-1865
Attack: HP OpenView Omniback CVE-2001-0311
Attack: HP OpenView Storage Data Protector CVE-2011-1866
Attack: HP Power Manager Administration CVE-2009-2685
Attack: HP Power Manager CVE-2009-3999
Attack: HP Printer Remote Code Execution CVE-2017-2741 2
Attack: HP SiteScope CVE-2013-2367
Attack: HP SiteScope Directory Traversal
Attack: HP Virtual SAN Appliance CVE-2011-4157
Attack: HPE iMC CVE-2017-5817
Attack: HT-MP3Player CVE-2009-2485
Attack: HTTP Apache Tomcat UTF-8 Dir Traversal CVE-2008-2938
Attack: HTTP MSIE CVE-2010-0255
Attack: HTTP htdig File Disclosure CVE-2000-0208
Attack: Horde Groupware Sources Packages Backdoor CVE-2012-0209
Attack: Husdawg System Requirements Lab CVE-2008-4385
Attack: IBM Cognos CVE-2012-0202
Attack: IBM DOMINO Buffer Overflow CVE-2015-0117
Attack: IBM Director CVE-2009-0880
Attack: IBM Informix OpenAdmin CVE-2017-1092
Attack: IBM Lotus Notes Applix Viewer CVE-2011-1216
Attack: IBM Lotus Notes CVE-2012-2174
Attack: IBM Personal Communications CVE-2012-0201
Attack: IBM Tivoli Management Framework Argument CVE-2011-1220
Attack: IBM Tivoli Storage Manager CVE-2009-3853
Attack: IBM Tivoli Storage Manager Client
Attack: IBM Tivoli Storage Manager FastBack Mount Buffer Overflow
Attack: IBM Tivoli Storage Manager FastBack Stack Buffer Overflow
Attack: ICMP PowerShell Shell Activity
Attack: Iconics Genesis
Attack: Infostealer.Isniffer Activity
Attack: Iodine Tool Tunneling Activity
Attack: JBoss Commons-Collections JAVA Library Deserialization RCE
Attack: JBoss Commons-Collections Java Library Deserialization RCE
Attack: JBoss JMX Console Beanshell WAR Upload and Deployment
Attack: JBoss JMX Console Beanshell WAR Upload and Deployment 2
Attack: JBoss JMX Console Beanshell WAR Upload and Deployment 3
Attack: JBoss JMX Console Beanshell WAR Upload and Deployment 4
Attack: JBoss JMX Console Beanshell WAR Upload and Deployment 5
Attack: JBoss JMX Console Beanshell WAR Upload and Deployment 6
Attack: JBoss JMXInvokerServlet CVE-2007-1036
Attack: Jackrabbit XXE CVE-2015-1833
Attack: Jenkins Commons-Collections JAVA Library Deserialization
Attack: Jenkins Default Configuration RCE
Attack: Jenkins Deserialization RCE
Attack: Jenkins JRMP Java Library Deserialization RCE
Attack: Jenkins Script-Console Java Execution
Attack: Jenkins Xstream Java Library Deserialization Vulnerability
Attack: Joomla Easy Youtube Gallery SQLi
Attack: Joomla Guru Pro Component SQLi
Attack: Joomla Remote Code Execution CVE-2015-8562
Attack: Joomla SQL Injection
Attack: Joomla SQL Injection CVE-2017-8917
Attack: Juniper Screenos Backdoor Login CVE-2015-7755
Attack: KingView CVE-2012-4711
Attack: KingView Scada CVE-2011-0406
Attack: Kingsoft Writer CVE-2013-3934
Attack: LanDesk Management Suite CVE-2007-1674
Attack: Lattice Diamond Programmer XCF File BO
Attack: Lattice Semiconductor PAC-Designer BO CVE-2012-2915
Attack: Lenovo LANDesk ThinkManagement CVE-2012-1195
Attack: Linksys Authentication Bypass
Attack: Linux CGI Exploit Attempt
Attack: Linux.Masuta Activity
Attack: Linux.Satori Activity
Attack: Log1 CMS CVE-2011-4825
Attack: Lotus domino RCE Attack
Attack: LotusCMS PHP Code Execution
Attack: MDAC Component Query CAN-2002-1142
Attack: MJM Core Multimedia Suite and Quickplayer .s3m File BO
Attack: MMPlayer .m3u and .ppl Files Buffer Overflow
Attack: MPEG Layer3 CVE-2010-0480
Attack: MPlayer SAMI Subtitle File Buffer Overflow
Attack: MPlayer m3u File BO
Attack: MS ASP.NET Hash Collision Denial Of Service
Attack: MS Excel HFPicture Record CVE-2010-1248
Attack: MS Excel Obj Record CVE-2010-0822
Attack: MS Excel RTD Record CVE-2010-1246
Attack: MS Excel RTD Record CVE-2011-0105
Attack: MS Excel Remote Code Exec 3
Attack: MS Excel SLK File Font Parsing CVE-2011-1276
Attack: MS Office Word RTF Exploit CVE-2010-3333
Attack: MS OpenType Font CVE-2013-1291
Attack: MS Outlook NNTP Response CVE-2005-1213
Attack: MS PowerPoint TimeColorBehaviorContainer Record
Attack: MS SQL Server 2000 Resolution Service CVE-2002-0649
Attack: MS SharePoint Server XSS
Attack: MS URI Handler CVE-2007-3896
Attack: MS Visio CVE-2007-0936
Attack: MS Windows Common Controls ActiveX CVE-2012-1856
Attack: MS Windows Link File CVE-2010-2568
Attack: MS Windows Print Spooler CVE-2012-1851
Attack: MS Windows Print Spooler CVE-2012-1851 2
Attack: MS Windows Thumbnail Remote Code Execution
Attack: MS Windows WMF CVE-2005-4560
Attack: MS Word HyperlinkExt BO
Attack: MSIE OVCtl NewDefaultItem Property BO
Attack: MSIE Table Frameset CVE-2006-3471
Attack: MUSE PLS File BO
Attack: Mac OS X Samba CVE-2012-1182
Attack: Magento Unserialize RCE
Attack: Malformed XLS SWF Remote Code Execution CVE-2011-0609
Attack: Malicious Android Debug Bridge Command
Attack: Malicious File Download 2
Attack: Malicious File Download By RTF File
Attack: Malicious INF File Download
Attack: Malicious Microsoft Office File Download
Attack: Malicious Microsoft Office File Download 2
Attack: Malicious Microsoft Office File Download 3
Attack: Malicious Microsoft Office File Download 4
Attack: Malicious Payload Activity
Attack: Malicious Payload Activity 12
Attack: Malicious Payload Upload
Attack: Malicious Payload Upload 3
Attack: Malicious Payload Upload 4
Attack: Malicious RTF File CVE-2017-0199
Attack: Malicious RTF File Download
Attack: Malicious Serialized Object Download
Attack: Malicious Telnet Command Execution 2
Attack: ManageEngine Opmanager Remote Code Execution
Attack: ManageEngine Security Manager Plus Advanced Search SQL
Attack: Massimiliano Montoro Cain & Abel .rdp File BO
Attack: Maxthon about:history Cross-Site Scripting
Attack: Measuresoft SCADA Command Execution
Attack: Mediacoder LST File BO
Attack: Mediacoder M3U File Buffer Overflow
Attack: Memory Heap Spray
Attack: Metasploit Payload Upload Activity
Attack: Metasploit Payload Upload Activity 2
Attack: Meterpreter Bind TCP
Attack: Meterpreter Reverse HTTP
Attack: Meterpreter Reverse HTTPS
Attack: Meterpreter Reverse TCP
Attack: Meterpreter Reverse TCP 2
Attack: Meterpreter Reverse TCP Activity 3
Attack: Meterpreter Reverse TCP Activity 5
Attack: MicroP mppl File Remote Buffer Overflow Vulnerability
Attack: Microsoft LNK File RCE CVE-2017-8464
Attack: Microsoft LNK File RCE CVE-2017-8464 2
Attack: Microsoft Office CVE-2017-11826
Attack: Microsoft Office CVE-2018-0802
Attack: Microsoft RDP CVE-2012-0002 2
Attack: Microsoft RDP CVE-2012-0002 3
Attack: Microsoft RDP CVE-2012-0002 4
Attack: Microsoft RTF CVE-2014-1761
Attack: Microsoft RTF CVE-2014-1761 2
Attack: Microsoft SMB CVE-2009-3676
Attack: Microsoft Secure Channel CVE-2014-6321
Attack: Microsoft SharePoint Server 2007 CVE-2010-3964
Attack: Microsoft Windows LSASS Memory Corruption DOS
Attack: Microsoft Windows Office Assembly CVE-2012-0013
Attack: Microsoft Windows Schannel Heap Overflow DoS CVE-2014-6321
Attack: Microsoft Windows True Type Font CVE-2011-3402
Attack: Microsoft Word CVE-2009-0563
Attack: Millennium Mp3 Studio PLS File Buffer Overflow
Attack: Mini-Stream RM-MP3 Converter PLS File BO
Attack: Mini-stream Ripper CVE-2009-5109
Attack: MobileCartly Arbitrary File Write
Attack: MobileCartly Arbitrary File Write 2
Attack: Multiple HP Products CVE-2013-4822 RCE
Attack: MySQL Server CVE-2012-5613
Attack: MySQL Server SELECT Statement EXE Upload
Attack: NETGEAR Prosafe Arbitrary File Upload
Attack: NTP DoS CVE-2016-7434
Attack: Nagios Core CVE-2016-9565
Attack: Nagios Core CVE-2016-9565 2
Attack: Nagios XI Chained Remote Code Execution
Attack: NetDecision HTTP Server BO CVE-2012-1465
Attack: NetWin SurgeFTP Remote Command Execution
Attack: NetZIP Classic ZIP Parsing
Attack: Netcore Router BackDoor Access
Attack: Netis Router Scan 2
Attack: Netop Remote Control .dws File BO
Attack: NodeJS V8 Debugger RCE
Attack: Norton 2004 ISAlert CVE-2007-1689
Attack: Novell Configuration Management CVE-2011-3176
Attack: Novell Servicedesk Arbitrary File Upload
Attack: Novell ZENWorks Asset Management CVE-2012-4933
Attack: Novell ZENworks CVE-2011-2657
Attack: Novell ZENworks Config Management
Attack: Novell ZENworks Configuration Management RCE
Attack: Novell ZENworks Configuration Management RCE 2
Attack: Null Address Execution
Attack: Nullsoft Winamp MAKI BO CVE-2009-1831
Attack: Numark CUE M3U BO
Attack: Nuxeo Arbitrary File Upload Activity
Attack: OSX MacKeeper Backdoor Activity
Attack: Odin Secure FTP LIST Command BO
Attack: Omni NFS FTP
Attack: Omni NFS Server NFSD CVE-2006-5780
Attack: OpenFire Server CVE-2008-6508
Attack: OpenSSL CVE-2016-0777
Attack: OpenSSL CVE-2016-0777 2
Attack: OpenSSL Heartbleed CVE-2014-0160
Attack: OpenSSL Heartbleed CVE-2014-0160 3
Attack: OpenSSL Memory Corruption CVE-2014-0195
Attack: OpenSSL Reverse Heartbleed CVE-2014-0160
Attack: Oracle ATS Arbitrary File Upload
Attack: Oracle Business Transaction Management Remote Code
Attack: Oracle Endeca Server CVE-2013-3763
Attack: Oracle MySQL CVE-2016-6662
Attack: Oracle Outside XPM Image Processing CVE-2012-0554
Attack: Oracle UploadFileAction Servlet RCE CVE-2016-0491
Attack: Oracle Uploadfileservlet Servlet RCE CVE-2016-0490
Attack: Oracle Weblogic RCE CVE-2018-2628
Attack: Oracle XDB FTP BO 2
Attack: PCMan FTP Server PUT Command BO
Attack: PCMan FTP Server USER Command BO
Attack: PHP Arbitrary File Upload CVE-2016-3078
Attack: PHP CGI CVE-2012-1823
Attack: PHP Mailer CVE-2016-10033
Attack: PHP Mailer CVE-2016-10033 2
Attack: PHP Shell Command Execution
Attack: PHP apache_request_headers BO CVE-2012-2329
Attack: Photodex ProShow Gold CVE-2009-3214
Attack: Photodex ProShow Gold CVE-2009-3214 2
Attack: Photodex ProShow Producer BO
Attack: PhpTax drawimage.php RCE
Attack: Pineapple Router RCE Request
Attack: Plixer Scrutinizer CVE-2012-3951
Attack: PmWiki PageListSort() Function CVE-2011-4453
Attack: Pointdev IDEAL Administration
Attack: Pointdev IDEAL Migration BO
Attack: Power Tab Editor CVE-2010-2311
Attack: PowerSploit Invoke Mimikatz Request
Attack: PowerSploit Tookit Activity
Attack: Powershell Injection Attack
Attack: Powershell Payload Web Delivery
Attack: Powershell Payload Web Delivery 2
Attack: Publish-It PUI Buffer Overflow CVE-2014-0980
Attack: RDP Double Pulsar Ping
Attack: RTF ASLR Bypass Vulnerability
Attack: RTMP Flash CVE-2014-0549
Attack: RabidHamster R4 CVE-2012-1223
Attack: Ransom.BadRabbit Activity
Attack: Ransom.Gen Activity 20
Attack: Ransom.Gen Activity 21
Attack: Ransom.Gen Activity 22
Attack: Ransom.Haknata Activity
Attack: Ransom.Locky Activity
Attack: Ransom.Samsam Upload Activity 2
Attack: Ransom.Sorebrect Activity
Attack: Real Networks RealPlayer CVE-2012-5961
Attack: Real Networks RealPlayer CVE-2012-5961 2
Attack: RealPlayer QCP File CVE-2011-2950
Attack: RealVNC NULL Auth Bypass Attempt CVE-2006-2369
Attack: Redis UnAuthorized File Upload
Attack: Return Oriented Programming API Invocation
Attack: Return Oriented Programming Changes Stack Pointer
Attack: Return-Oriented-Programming - Heap Payload
Attack: Ricoh DC FTP USER Command CVE-2012-5002
Attack: Rockwell RSLogix RsvcHost.exe CVE-2011-3489
Attack: Ruby On Rails Action Pack CVE-2016-2098
Attack: Ruby On Rails Remote Code Execution CVE-2016-0752
Attack: Ruby Rails Web Console RCE
Attack: Ruby on Rails CVE-2013-0156
Attack: S/Mime Information Disclosure CVE-2017-17689
Attack: SAP 2005 License Manager CVE-2009-4988
Attack: SAP NetWeaver CVE-2012-2611
Attack: SAP Netweaver SAPHostControl Service RCE
Attack: SEP File Overwrite
Attack: SEPM JRMI RCE
Attack: SIELCO Sistemi Winlog CVE-2011-0517
Attack: SMB Arbitrary Service Create Request 2
Attack: SMB Double Pulsar Ping
Attack: SMB Double Pulsar Response
Attack: SMB Double Pulsar V2 Activity
Attack: SMB Metasploit Payload Upload
Attack: SMB Ransom Malware Copy Attempt
Attack: SMB Ransom Malware Copy Attempt 2
Attack: SMB Sniffer Negotiate Protocol Challenge Key 2
Attack: SMB W32.Looked File Transfer
Attack: SPlayer Content-Type Buffer Overflow
Attack: SQLi Scanner Activity
Attack: SafeNet SoftRemote CVE-2009-3861
Attack: Samsung Smartcam Attack
Attack: Scada Control MicroSystems ClearScada DOS
Attack: Seagull FTP LIST Command BO
Attack: Sendmail Denial Of Service CVE-2003-0694
Attack: Sflog! CMS Arbitrary File Upload
Attack: Shellcode Download Activity
Attack: Shellcode Download Activity 2
Attack: Shellcode Download Activity 3
Attack: Shellcode Download Activity 4
Attack: Sielco Sistemi Winlog Lite CVE-2012-3815
Attack: Simple Open Music Player v1.0 m3u File Buffer Overflow
Attack: Snort Report Remote Command Execution
Attack: SolidWorks Workgroup PDM Arbitrary File Overwrite
Attack: SolidWorks Workgroup PDM Remote Code Execution
Attack: Sony IPELA Engine IP Camera RCE
Attack: Sparkle Updater Remote Code Execution Vulnerability
Attack: Splunk CVE-2011-4642
Attack: Splunk Custom App RCE
Attack: Stack No-Execute-Bit Override
Attack: Structured Exception Handler Overwrite
Attack: Subtitle Processor m3u file BO
Attack: SugarCRM REST Unserialize PHP Code Execution
Attack: Sunway Force Control SCADA HttpSrv
Attack: Super Player 3500 M3U Buffer Overflow
Attack: Suspicious SQL command
Attack: SyBase EAServer CVE-2005-2297
Attack: Symantec AMS Intel Handler CVE-2010-3268
Attack: Symantec Alert Originator Service CVE-2009-1430
Attack: Symantec PCAnywhere Elevation of Privilege CVE-2011-3478
Attack: Symantec PCAnywhere Elevation of Privilege CVE-2011-3478 2
Attack: Symantec PowerPoint BO CVE-2016-2209
Attack: Symantec Web Gateway Command Injection Vulnerability
Attack: Symantec Web Gateway File Inclusion CVE-2012-0297
Attack: Synology Photo Station RCE
Attack: Synology Photo Station RCE 2
Attack: Sysax Multi Server BO
Attack: TCP SCADA SNMP Net DBServer
Attack: TFTP Generic Filename Exploit BO CVE-2008-1403
Attack: TFTP Mode
Attack: TFTP Server CVE-2008-1611
Attack: TP-Link SC2020n Unauthenticated Telnet Injection
Attack: TeeChart Professional ActiveX Remote Integer Overflow
Attack: TestLink Arbitrary PHP File Upload
Attack: TestLink SQL Injection CVE-2012-0939
Attack: Tiki Wiki CMS Groupware Arbitrary File Upload
Attack: Toshiba Service Station Registry Read
Attack: Track IT CVE-2014-4872
Attack: Traq plugin.php Parameter Cross-Site Scripting
Attack: TrendMicro Internet Security CVE-2010-3189
Attack: Trimble Sketchup CVE-2013-3664
Attack: Triologic Media Player CVE-2009-0266
Attack: Trojan Asprox
Attack: Trojan Gen2 Executable
Attack: Trueonline Router Command Injection Activity
Attack: TurboFTP Server Port Command Processing Buffer Overflow
Attack: TurboFTP Server Port Command Processing Buffer Overflow 2
Attack: UDP TFTP Server Error Packet BO CVE-2008-2161
Attack: Ultra Mini HTTPD GET CVE-2013-5019
Attack: UltraISO CUE File CVE-2007-2888
Attack: UltraVNC VNCViewer CVE-2008-0610
Attack: Umbraco CMS Arbritary File Upload
Attack: UplusFTP CWD Command BO
Attack: V-CMS CVE-2011-4828
Attack: VLC Media Player ABC File BO
Attack: VLC Media Player S3M
Attack: VLC SMB URI Handling
Attack: VMware CVE-2011-3868
Attack: VMware OVF Tool CVE-2012-3569
Attack: VMware OVF Tool OVF File CVE-2012-3569
Attack: VRTSWeb Remote Code Execution
Attack: VUPlayer CVE-2006-6251
Attack: VariCAD 2010 DWB File Buffer Overflow
Attack: VideoSpirit Pro VISPRJ CVE-2011-0499
Attack: VisiWave VWR File Processing
Attack: Vortex Light Alloy M3U Playlist CVE-2013-6874
Attack: W32.Bugbear
Attack: W32.Ircbot.NG Download Request
Attack: W32.Xiaobaminer Activity
Attack: WD My Cloud Authentication Bypass
Attack: WM Downloader BO
Attack: WM Downloader BO 2
Attack: WMP Malformed PNG CVE-2006-0025
Attack: WPS Office CVE-2012-4886
Attack: WSDL Soap CVE-2017-8759
Attack: WSDL Soap CVE-2017-8759 4
Attack: WeBid Arbitrary PHP Code Injection Vulnerability
Attack: Web CMS Kaltura Unserialize RCE
Attack: Web CMS Multiple Sql Injection
Attack: Web CMS Think PHP RCE 2
Attack: WebCalendar Code Injection CVE-2012-1495
Attack: WebLogic Commons-Collections JAVA Library Deserialization
Attack: WebNMS Framework Arbitrary File Upload
Attack: WebNMS Framework Remote Code Execution CVE-2016-6603
Attack: WebPageTest Arbitrary PHP File Upload
Attack: Welchia IIS WebDAV Search 2
Attack: WellinTech KingSCADA CVE-2014-0787
Attack: Whisker/Libwhisker Scan
Attack: Whisker/Libwhisker Scan 3
Attack: WifiCam Authentication Bypass
Attack: WikkaWiki CVE-2011-4451
Attack: Wincom LPD Total Remote Admin CVE-2008-5159
Attack: Windows Fax Page Editor CVE-2010-3974
Attack: Windows SMB Memory Corruption CVE-2015-2474
Attack: Windows Spooler Service CVE-2010-2729
Attack: Windows Spooler Service CVE-2010-2729 3
Attack: Wireshark MPEG CVE-2014-2299
Attack: Wireshark UDP LWRES GetAddrByName CVE-2010-0304
Attack: WordPress Password Reset Attempt
Attack: Wordpress Ninja Forms Unauthenticated File Upload
Attack: Wordpress WP Mobile Detector Arbitrary Upload
Attack: Xenorate .xpl File Remote Buffer Overflow Vulnerability
Attack: Xlink FTP Multiple Buffer Overflow
Attack: XnView CVE-2013-3246
Attack: XnView CVE-2013-3492
Attack: Yokogawa CENTUM CS 3000 Multipile Buffer Overflow
Attack: Yokogawa Centum CS 3000 BKHOdeq CVE-2014-0783
Attack: Yokogawa Centum CS 3000 CVE-2014-3888
Attack: Yokogawa Centum CS 3000 CVE-2014-3888 2
Attack: Yokogawa Simulator Management Process CVE-2014-0782
Attack: Zoom Player CVE-2013-3259
Attack: Zope cmd Parameter CVE-2011-3587
Attack: Zpanel Pchart2 Directory Traversal
Attack: activeCollab Chat Module Arbitrary PHP Code Execution
Attack: appRain CMF CVE-2012-1153
Attack: eSignal QUO File CVE-2011-3494
Attack: eZip Wizard Zip File BO
Attack: gAlan File Remote Buffer Overflow Vulnerability
Attack: myMP3-Player .m3u File Buffer Overflow Vulnerability
Attack: myMP3-Player .m3u File Buffer Overflow Vulnerability 2
Attack: op5 Monitor CVE-2012-0261
Attack: op5 Monitor CVE-2012-0262
Attack: phpLDAPadmin CVE-2011-4075
Attack: phpMyAdmin Backdoor CVE-2012-5159
Attack: phpMyAdmin CVE-2009-4605
Attack: phpMyAdmin CVE-2013-3238
Attack: phpMyAdmin CVE-2016-5734
Attack: phpScheduleIt CVE-2008-6132
Attack: qdPM Arbitrary PHP File Upload
Attack: vBSEO Remote Code Execution CVE-2012-5223
Attack: vBulletin 5 SQLi
Attack: vBulletin 5 Unserialize RCE
Attack: xRadio XRF File BO
Audit: .DS_Store Information Leak
Audit: .git Directory Information Leak
Audit: AIM ICQ Request (OSCAR)
Audit: AOL IM Login
Audit: AOL IM Message Received
Audit: AOL IM Message Sent
Audit: Adware.Gen Activity 33
Audit: Adware.SlickSavings Activity
Audit: Adware.SuperFish Activity
Audit: CISCO Smart Install Protocol Abuse
Audit: Default Credentials Login
Audit: Emule File Traffic
Audit: Heatmiser Thermostat Credentials Disclosure
Audit: IRC DCC Private Message Chat Cmd
Audit: IRC JOIN Command
Audit: IRC NICK Command
Audit: IRC Notice Command
Audit: IRC Notice DCC Chat Command
Audit: IRC Notice DCC Send Command
Audit: IRC Private Message Command
Audit: IRC Private Message DCC Send Cmd
Audit: IRC USER Command
Audit: JSCoinminer Download 3
Audit: JSCoinminer Download 4
Audit: Jabber Traffic
Audit: Kazaa File Request
Audit: MSN Messenger Login
Audit: MSN Messenger Login Attempt
Audit: Malicious Domain Request
Audit: Miner.Bitcoinminer Website Request
Audit: Nessus Vulnerability Scanner Activity
Audit: Nessus Vulnerability Scanner Activity 2
Audit: Nessus Vulnerability Scanner Activity 3
Audit: NetBIOS Disk Enumeration
Audit: NetBIOS Group Enumeration
Audit: NetBIOS Service Enumeration
Audit: NetBIOS Transport Enumeration
Audit: NetBIOS User Enumeration
Audit: NetBIOS User Session Enumeration
Audit: Netgear Admin Password Leak Attack
Audit: Onion Domain Website Request
Audit: OpenSSL Memory Corruption CVE-2014-0195 2
Audit: OpenVPN Information Disclosure CVE-2016-6329
Audit: P2P Ares Client Connection
Audit: P2P BitTorrent Request
Audit: P2P BitTorrent Traffic
Audit: P2P Blubster Download Setup
Audit: P2P DirectConnect Application
Audit: P2P Edonkey Ping Message
Audit: P2P Edonkey Start Upload Request
Audit: P2P Fasttrack Network Ping Messages
Audit: P2P Gnutella Bearshare Connection
Audit: P2P Gnutella Connection
Audit: P2P Gnutella File Request
Audit: P2P Gnutella Morpheus Connection
Audit: P2P Kazaa Connection
Audit: P2P Manolito Client Usage
Audit: P2P Mute Usage
Audit: P2P OpenFT File Request
Audit: P2P Overnet Search Request (UDP)
Audit: P2P Peercast Application
Audit: P2P SoulSeek Usage
Audit: P2P eMule Hello
Audit: PSExec Utility Activity
Audit: PUA Kometa Download
Audit: PUA OpenCandy Activity
Audit: PUA ReimageRepair Download
Audit: PUA.Downloader Activity 10
Audit: PUA.Downloader Activity 5
Audit: PUA.Downloader Download
Audit: PUA.Downloader Download 2
Audit: PUA.Downloader Download 4
Audit: PUA.Downloader Download 5
Audit: PUA.DriverAgentPlus Activity
Audit: PUA.DriverReviver Download
Audit: PUA.LoadMoney Activity
Audit: PUA.OneSafe_PC_Cleaner Download
Audit: PUA.PinnacleDriverUp Activity
Audit: PUA.Updater Activity
Audit: Pupy RAT Activity 2
Audit: QQ IM Login Packet
Audit: Quake 3 Connection
Audit: RC4 Cipher Suite CVE-2015-2808
Audit: Ransom.Wannacry Activity
Audit: SMB Admin Share Connect Request
Audit: SMB Bruteforce Attempt
Audit: SMB Double Extension File Creation
Audit: SMB Guest Login
Audit: SMB LNK File Write
Audit: SMB Suspicious Folder File Creation
Audit: SMB autorun.inf File Creation
Audit: SSL/TLS Information Disclosure CVE-2016-2183
Audit: SSLV2 Server Hello
Audit: SSLV3 Server Hello
Audit: Screensaver File HTTP Download
Audit: Skype Requesting Updates 2
Audit: TCP Citect SCADA ODBC Server BO
Audit: TCP ISO-SP AB Parameter Is Not User Data
Audit: TCP ISO-SP DN Parameter Is Not User Data
Audit: TCP ISO-SP DT Parameter Is Not User Data
Audit: TCP ISO-SP FN Parameter Is Not User Data
Audit: TCP ISO-SP Invalid CN Parameter Code
Audit: TCP ISO-SP Invalid Service Code
Audit: TCP ISO-SP Oversized CN Parameter
Audit: TCP ISO-TP0 Invalid TPDU User Data Size
Audit: TCP ISO-TP0 Oversized Transport Selector ID
Audit: TCP ISO-TP0 Unknown Transport Code
Audit: TCP MODBUS - Clear Ctrs and Diag Registers
Audit: TCP MODBUS - Force Listen Only Mode
Audit: TCP MODBUS - Illegal Packet Size
Audit: TCP MODBUS - Read Device Identification
Audit: TCP MODBUS - Report Server Information
Audit: TCP MODBUS - Restart Communications Opt.
Audit: TCP MODBUS - Unauthorized Read Request
Audit: TCP MODBUS - Unauthorized Write Request
Audit: TCP RFC1006 Invalid Vers/Res Fld Value (A)
Audit: TCP RFC1006 Invalid Vers/Res Fld Value (B)
Audit: TCP RealWin SCADA Server BO
Audit: TCP Shellcode Download Activity 1
Audit: TOC (AOL) IM Usage
Audit: TOR HTTP Activity
Audit: TOR Handshake Activity
Audit: Telnet Default Login Credentials
Audit: Trojan.Trickybot Activity 8
Audit: Unimplemented Trans2 Subcommand
Audit: VNC Login Success
Audit: VNC Server Banner
Audit: Weak Export Cipher Suite
Audit: Weak Export Cipher Suite CVE-2015-0024 2
Audit: Yahoo! Conference Login
Audit: Yahoo! IM Activity
Audit: Yahoo! IM Conference Invite
Audit: Yahoo! IM File Transfer
Audit: Yahoo! IM Login
Audit: Yahoo! Ping
Audit: Yahoo! Webcam View 2
Audit: ZeroTier Activity
Azaco Worm Propagation
BD AckCmd
BD BackOrifice 2000 UDP Activity
BD Hell-Driver
BD Latinus 1.5
BD Lovgate Commands
BD NetBus Activity
BD Peacomm Trojan
BDE DNS Request
BFTP SITE CHOWN BO (1)
BFTP SITE CHOWN BO (2)
BackOrifice Speakeasy Trojan Activity
Backdoor C.I.A
Backdoor MoSucker 3.0
Begin2Search DNS Request
Blaster Worm TFTP Backdoor (TCP)
Blaster Worm TFTP Backdoor (UDP)
Blazefind DNS Request
Brid A Worm Propagation
BroadcastPC DNS Request
BugBear B Worm FileShare Propagation
Claw Worm Propagation
Clearsearch DNS Request
Cloudlookup: Browser Navigation to URL With Bad Reputation
Computer Associates License GetConfig BO
DDOS Stacheldraht ClientCheck gag
DDOS Trin00 MasterDaemon Default PW
DWARE DNS Request
Diagnostic: EICAR Standard Anti-Virus Test File
Dumaru Worm Propagation
Ebates Moemoney DNS Request
ElSpy Worm "are_u" Request Response
ElSpy Worm Infection Notification
ElSpy Worm Propagation
FTP AIX Remote BO
FTP CreateDirectory BO (1)
FTP CreateDirectory BO (2)
FTP FlashGet Response BO
FTP MS IIS Status DoS
FTP MSIE Response Buffer Overflow
FTP PlatinumFTPserver DoS
FTP Vermillion FTPD Port BO
Fake App Attack: Adware Installer Download 2
Fake App Attack: ErrClean Executable Download
Fake App Attack: ErrorDoctor Executable Download
Fake App Attack: Fake AV Attack 4
Fake App Attack: Fake AV Attack 5
Fake App Attack: Fake AV Download Request
Fake App Attack: Fake AV File Download 3
Fake App Attack: Fake AV Notification Alert
Fake App Attack: Fake AV Redirect 10
Fake App Attack: Fake AV Redirect 11
Fake App Attack: Fake AV Redirect 12
Fake App Attack: Fake AV Redirect 13
Fake App Attack: Fake AV Redirect 14
Fake App Attack: Fake AV Redirect 15
Fake App Attack: Fake AV Redirect 16
Fake App Attack: Fake AV Redirect 19
Fake App Attack: Fake AV Redirect 2
Fake App Attack: Fake AV Redirect 20
Fake App Attack: Fake AV Redirect 24
Fake App Attack: Fake AV Redirect 27
Fake App Attack: Fake AV Redirect 28
Fake App Attack: Fake AV Redirect 29
Fake App Attack: Fake AV Redirect 31
Fake App Attack: Fake AV Redirect 33
Fake App Attack: Fake AV Redirect 9
Fake App Attack: Fake AV Response Header
Fake App Attack: Fake AV Scan Website 2
Fake App Attack: Fake AV Website 10
Fake App Attack: Fake AV Website 13
Fake App Attack: Fake AV Website 15
Fake App Attack: Fake AV Website 16
Fake App Attack: Fake AV Website 17
Fake App Attack: Fake AV Website 18
Fake App Attack: Fake AV Website 19
Fake App Attack: Fake AV Website 20
Fake App Attack: Fake AV Website 21
Fake App Attack: Fake AV Website 23
Fake App Attack: Fake AV Website 24
Fake App Attack: Fake AV Website 27
Fake App Attack: Fake AV Website 28
Fake App Attack: Fake AV Website 31
Fake App Attack: Fake AV Website 32
Fake App Attack: Fake AV Website 33
Fake App Attack: Fake AV Website 34
Fake App Attack: Fake AV Website 35
Fake App Attack: Fake AV Website 36
Fake App Attack: Fake AV Website 38
Fake App Attack: Fake AV Website 5
Fake App Attack: Fake AV Website 9
Fake App Attack: Fake Application Website 2
Fake App Attack: Fake Browser Update 2
Fake App Attack: Fake Codec Download 2
Fake App Attack: Fake Codec File Download
Fake App Attack: Fake Codec WebPage 2
Fake App Attack: Fake Codec Website
Fake App Attack: Fake Codec Website 2
Fake App Attack: Fake Codec Website 3
Fake App Attack: Fake Codec Website 4
Fake App Attack: Fake Codec Website 5
Fake App Attack: Fake Codec Website 6
Fake App Attack: Fake Scan Webpage
Fake App Attack: Fake Scan Webpage 10
Fake App Attack: Fake Scan Webpage 2
Fake App Attack: Fake Scan Webpage 3
Fake App Attack: Fake Scan Webpage 4
Fake App Attack: Fake Scan Webpage 5
Fake App Attack: Fake Scan Webpage 8
Fake App Attack: FakeAV Redirect 11
Fake App Attack: HTTP Misleading Application Download Request 1
Fake App Attack: Misleading Application File Download 11
Fake App Attack: Misleading Application File Download 2
Fake App Attack: Misleading Application File Download 3
Fake App Attack: Misleading Application File Download 4
Fake App Attack: Misleading Application File Download 6
Fake App Attack: Misleading Application File Download 7
Fake App Attack: Misleading Application Redirect
Fake App Attack: Misleading Application Suspicious Notification
Fake App Attack: Misleading Application Suspicious Notification 2
Fake App Attack: Misleading Application Suspicious Notification 5
Fake App Attack: Misleading Application Website
Fake App Attack: Misleading Application Website 2
Fake App Attack: Misleading Application Website 4
Fake App Attack: Misleading Application Website 5
Fake App Attack: Misleading Application Website 7
Favoriteman DNS Request
Fizzer Worm Propagation (TCP)
Fizzer Worm SMTP Propagation
Frethem L Worm Propagation
Gaobot Autostart and Service Commands
Gaobot Bot Logout Command
Gaobot DDOS commands
Gaobot Generic Bot Commands
Gaobot Harvest Mail and Keys Command
Gaobot P2P Client Hello
Gaobot Redirect Commands
Gaobot Variable Config Commands
Goner A Worm Propagation
HP OpenView Remote Command Exec
HTML Domain Name BO (Milw0rm Exploit)
HTML Domain Name BO (PoC)
HTML HR Align BO
HTML WinHelp Item BO
HTTP 2Wire Drive-By Automatic Config Change
HTTP ACDSee XPM File BO
HTTP ANI File Hdr Size BO
HTTP ASF BinaryMediaObject BO
HTTP ASF StreamPropObj AudioErrMasking BO
HTTP ASF StreamPropObj SpreadAudio BO
HTTP Acoustica Beatcraft Title BO
HTTP Acoustica CD Burner Playlist BO
HTTP Active Template Library Killbit Bypass
HTTP Adobe AcroPDF BO
HTTP Adobe BMP Image Header BO
HTTP Adobe Flash SWF Plugin Code Exec
HTTP Adobe Illustrator Buffer Overflow
HTTP Adobe JBIG2Decode BO
HTTP Adobe Photoshop BMP File BO
HTTP Adobe U3DFile ArrayIndex BO
HTTP AltaVista DirTraversal
HTTP Anaconda Directory Traversal CVE-2000-0975
HTTP Apple Mac OSX AFP Client Code Exec
HTTP Apple QT Atom Memory Corruption
HTTP Apple QuickTime Panaroma Atom BO
HTTP Apple QuickTime QTL Code Execution
HTTP Apple QuickTime STSD Atom BO
HTTP Apple QuickTime Streaming BO
HTTP Apple Quicktime Color Atom Heap BO
HTTP Apple Quicktime Type BO
HTTP Apple Safari Log Format String
HTTP Apple iPhoto Format String BO
HTTP Apple iTunes URI BO
HTTP AstonSoft DeepBurner Path BO
HTTP Atomix MP3 M3U File Path Buffer Overflow
HTTP AutoDesk DWF Viewer AX Program Exec
HTTP Autodesk DWF Viewer File Overwrite
HTTP Autonomy KeyView WPD BO
HTTP Avzhan DDOS BOT Activity
HTTP B21Soft BfUp ActiveX BO
HTTP Backup Exec Sys Recovery Dir Trav
HTTP BadBlue MFCISAPI Cmd BO
HTTP Bigant IM Server BO
HTTP Black Ice Document Imaging ActiveX BO
HTTP BlazeVideo BlazeDVD Playlist BO
HTTP CGI NPH Request CVE-1999-0070
HTTP Cain and Abel Malformed File BO
HTTP CashInstaller Trojan Activity
HTTP Cisco 2GB Integer Overflow
HTTP Cisco VoIP DoS
HTTP Corel Paint Shop PNG BO
HTTP Crystal Rpts Form Viewer Traversal CVE-2004-0204
HTTP Cyberlink PowerDVD ClavSetting File Overwrite
HTTP Dart Zip ActiveX BO
HTTP DirectAnim ComObj CodeExec (PROGID)
HTTP DirectAnimation Spline Heap BO
HTTP Download Accelerator M3U BO
HTTP DronDog Trojan Activity
HTTP E-Vision CMS SQL Injection
HTTP EMF GDI Remote Code Exec
HTTP Electronic Arts SnoopyCtrl ActiveX BO
HTTP Excel Data Validation Malformed Record BO
HTTP Excel MSO Remote Code Exec
HTTP Excel Remote Code Exec CVE-2008-0081
HTTP Excel ShockWave Obj Flash JS Exec
HTTP Fake AV Installers Activity
HTTP FireFox MailTo URIHandler Remote Code Execution
HTTP Firefox Favicon Link Tag Code Exec
HTTP Firefox SVG Mem Corrupt Code Exec
HTTP FlashBB Sendmsg.php File Include
HTTP Flip4Mac Crafted WMV Mem Corruption
HTTP Foxy 'fs' Parameter Memory Exhaustion DoS
HTTP Fragus Toolkit Activity
HTTP Free Download Manager Torrent File BO
HTTP FullRemoteDisplay Dev Kit ActiveX BO CVE-2007-2623
HTTP Generic Shellcode (Unescape)
HTTP Ghostscript zseticcspace Function BO
HTTP Gracenote CddbCtrl SetClientInfo BO
HTTP Gumblar JS Download Activity 2
HTTP HP OpenView Toolbar BO
HTTP HP RegistryString ActiveX BO
HTTP Htgrep CGI File Access CVE-2000-0832
HTTP Hylafax Faxsurvey Remote PW Access CVE-1999-0262
HTTP IBM Access Support ActiveX BO
HTTP IBM Lotus Domino Web Server DOS
HTTP ICQ 6 Status Message BO
HTTP IE Object Type Validation
HTTP IE Style Heap Spray BO
HTTP IE Unsafe Scripting Misconfiguration
HTTP IIS CMDExecution Access (1)
HTTP IIS HTW Cross Site Scripting
HTTP IIS ISAPI Enumeration
HTTP IIS ISAPI Printer BO
HTTP IIS WebDAV PROPFIND
HTTP IIS Webdav Exploit
HTTP IIS Welchia WebDAV SEARCH BO (1)
HTTP IOXES Affiliate Downloader Activity