Difference between revisions of "WAF 360005"

From Atomicorp Wiki
Jump to: navigation, search
(Created page with ''''Rule ID''' 360005 '''Alert Message''' Atomicorp.com Malware Blacklist: Malware Site detected in ARGS/Body (AE) '''Description''' This rules detects if a known malwa…')
 

Latest revision as of 17:57, 4 May 2010

Rule ID

360005

Alert Message

Atomicorp.com Malware Blacklist: Malware Site detected in ARGS/Body (AE)

Description

This rules detects if a known malware site is included in an argument or a request BODY sent to the server.

False Positives

There are no known False Positives for this, however if you believe this is a false positive, it is recommended that you report this to our security team can determine if this is a legitimate case, or if its clever attack on your system and that you not disable this rule until our security team has reviewed the attack. Instructions to report false positives are detailed on the Reporting False Positives wiki page.

Similar Rules

WAF_360000

WAF_360002

WAF_360004

WAF_360003

WAF_360009

Outside References

Retrieved from "https://wiki.atomicorp.com/wiki/index.php?title=WAF_360005&oldid=845"
Personal tools