Differences

This shows you the differences between two versions of the page.

--- squid:alerts [2020/04/07 12:11] – created peter
+++ squid:alerts [2021/01/15 12:51] (current) – peter
@@ Line 4: / Line 4: @@
 [[Squid:Alerts:ET DROP Dshield Block Listed Source group 1|ET DROP Dshield Block Listed Source group 1]]
+[[Squid:Alerts:ET EXPLOIT HackingTrio UA (Hello, World)|ET EXPLOIT HackingTrio UA (Hello, World)]]
 [[Squid:Alerts:ET SCAN Sipvicious User-Agent Detected (friendly-scanner)|ET SCAN Sipvicious User-Agent Detected (friendly-scanner)]]
@@ Line 10: / Line 12: @@
 [[Squid:Alerts:ET TROJAN DNS Reply Sinkhole - Anubis - 195.22.26.192/26|ET TROJAN DNS Reply Sinkhole - Anubis - 195.22.26.192/26]]
+[[Squid:Alerts:SURICATA Applayer Mismatch protocol both directions|SURICATA Applayer Mismatch protocol both directions]]
 [[Squid:Alerts:SURICATA HTTP missing Host header|SURICATA HTTP missing Host header]]
 [[Squid:Alerts:SURICATA STREAM 3way handshake SYNACK with wrong ack|SURICATA STREAM 3way handshake SYNACK with wrong ack]]
+[[Squid:Alerts:SURICATA STREAM 3way handshake SYN resend different seq on SYN recv|SURICATA STREAM 3way handshake SYN resend different seq on SYN recv]]
+[[Squid:Alerts:SURICATA STREAM 3way handshake wrong seq wrong ack|SURICATA STREAM 3way handshake wrong seq wrong ack]]
+[[Squid:Alerts:SURICATA TLS invalid record/traffic|SURICATA TLS invalid record/traffic]]
+[[Squid:Alerts:SURICATA TLS invalid record type|SURICATA TLS invalid record type]]
 [[Squid:Alerts:SURICATA UDPv4 invalid checksum|SURICATA UDPv4 invalid checksum]]