User contributions
From Atomicorp Wiki
(Latest | Earliest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)
- 12:39, 21 October 2020 (diff | hist) . . (+820) . . N HIDS 533 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = OSSEC Rootkit detection has detected a servic...") (top)
- 12:37, 21 October 2020 (diff | hist) . . (+753) . . N HIDS 81531 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has indicated that the compliance ...") (top)
- 12:35, 21 October 2020 (diff | hist) . . (+673) . . N HIDS 81522 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = Informational message indicating the setti...") (top)
- 12:33, 21 October 2020 (diff | hist) . . (+907) . . N HIDS 514 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Rootcheck has detected an app...") (top)
- 12:30, 21 October 2020 (diff | hist) . . (+647) . . N HIDS 502 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = OSSEC Server Service has been restarted == Wh...") (top)
- 12:29, 21 October 2020 (diff | hist) . . (+664) . . N HIDS 5715 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = SSH event }} = Description = A successful SSH login has been detected == Wha...") (top)
- 12:27, 21 October 2020 (diff | hist) . . (+653) . . N HIDS 52506 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Clamav event }} = Description = The Clam-AV malware database has been update...") (top)
- 12:25, 21 October 2020 (diff | hist) . . (+1,414) . . N HIDS 59306 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Composite rule for multiple w...") (top)
- 12:22, 21 October 2020 (diff | hist) . . (+675) . . N HIDS 506 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC Audit event }} = Description = Indicates that the OSSEC client.keys fi...") (top)
- 12:21, 21 October 2020 (diff | hist) . . (+1,010) . . N HIDS 60602 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = This is a generic catchall for Window...") (top)
- 12:15, 21 October 2020 (diff | hist) . . (+989) . . N HIDS 80730 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = SELinux event }} = Description = SELinux has logged a permissions violation...") (top)
- 12:12, 21 October 2020 (diff | hist) . . (+1,091) . . N HIDS 60608 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows error event }} = Description = This is a summary event from the win...") (top)
- 12:07, 21 October 2020 (diff | hist) . . (+1,003) . . N HIDS 59247 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A local security group has been been...") (top)
- 12:03, 21 October 2020 (diff | hist) . . (+898) . . N HIDS 5108 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Linux System Event }} = Description = The Linux kernel has indicated that th...") (top)
- 12:01, 21 October 2020 (diff | hist) . . (+1,491) . . N HIDS 18153 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = This is a composite rule, 10 ...") (top)
- 11:59, 21 October 2020 (diff | hist) . . (+1,026) . . N HIDS 60642 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = This event indicates that the Softwar...") (top)
- 11:54, 21 October 2020 (diff | hist) . . (+1,204) . . N HIDS 60702 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = This indicates that the VSS s...") (top)
- 11:49, 21 October 2020 (diff | hist) . . (+1,880) . . N HIDS 59335 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows threat protection has indica...") (top)
- 11:44, 21 October 2020 (diff | hist) . . (+1,021) . . N HIDS 61138 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A new windows service has been added...") (top)
- 11:39, 21 October 2020 (diff | hist) . . (+721) . . N HIDS 81101 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = USB Auditing rule }} = Description = A new USB device has been attached to t...") (top)
- 11:37, 21 October 2020 (diff | hist) . . (+782) . . N HIDS 593 (Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Ossec event log }} = Description = This indicates that the OSSEC event log ...") (top)
- 11:34, 21 October 2020 (diff | hist) . . (+1,151) . . N HIDS 61060 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows performance library }} = Description = This indicates that the windo...") (top)
- 11:28, 21 October 2020 (diff | hist) . . (+1,010) . . N HIDS 59240 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A security enabled group has been cr...") (top)
- 11:23, 21 October 2020 (diff | hist) . . (+1,043) . . N HIDS 18259 (Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows Terminal Server has indicate...") (top)
- 11:21, 21 October 2020 (diff | hist) . . (+940) . . N HIDS 52511 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Anti-Virus }} = Description = This is a generic (level 3) event to collect r...") (top)
- 11:17, 21 October 2020 (diff | hist) . . (+747) . . N HIDS 59238 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...") (top)
- 11:14, 21 October 2020 (diff | hist) . . (0) . . HIDS 60612 (top)
- 11:14, 21 October 2020 (diff | hist) . . (+921) . . N HIDS 60612 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows System Event }} = Description = Application has been installed on th...")
- 11:10, 21 October 2020 (diff | hist) . . (+1,111) . . N HIDS 18602 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows System Event }} = Description = Composite rule identified multiple W...") (top)
- 11:05, 21 October 2020 (diff | hist) . . (+1,166) . . N HIDS 19002 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
- 11:01, 21 October 2020 (diff | hist) . . (+1,012) . . N HIDS 61110 (Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Composite IDS rule indicating...") (top)
- 10:57, 9 January 2018 (diff | hist) . . (-33) . . ASL FAQ (→What Linux distributions do you support?)
- 11:17, 8 January 2018 (diff | hist) . . (-2) . . Unattended installs
- 11:56, 14 December 2017 (diff | hist) . . (+895) . . N HIDS 171002 (Created page with " {{Infobox |header1= Rule 171002 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Exim authentication failure }} = Description = This means that an applica...") (top)
- 12:05, 12 September 2017 (diff | hist) . . (+145) . . Nginx (→NGINX with Libmodsecurity 3.0)
- 10:56, 11 August 2017 (diff | hist) . . (+1) . . Nginx (→NGINX for Libmodsecurity 3.0)
- 10:52, 11 August 2017 (diff | hist) . . (+3) . . Nginx (→Does ASL work with Nginx?)
- 10:47, 11 August 2017 (diff | hist) . . (+851) . . Nginx
- 11:42, 12 April 2017 (diff | hist) . . (-75) . . Atomic ModSecurity Rules (→About the rules)
- 15:29, 6 March 2017 (diff | hist) . . (+439) . . N HIDS 38001 (Created page with "'''Rule ID''' 38001 '''Message''' Plesk saslauthd Failed mail authenticatication attempt '''Description''' This rule detects when Plesk's sassauthd daemon records a s...")
- 12:51, 1 March 2017 (diff | hist) . . (+564) . . N HIDS 60034 (Created page with "'''Rule ID''' 60034 '''Status''' Active rule currently published. '''Description''' This rule is a catch all rule that detects when an application is exceeding the sys...") (top)
- 16:28, 23 February 2017 (diff | hist) . . (+330) . . ASL error messages
- 12:06, 19 December 2016 (diff | hist) . . (+1) . . ASL FAQ (→What is the benefit of Subscribing to ASL?)
- 07:43, 15 September 2016 (diff | hist) . . (+5) . . ASL error messages
- 07:41, 15 September 2016 (diff | hist) . . (+369) . . ASL error messages (→error: unpacking of archive failed on file /var/asl/etc/httpd/logs: cpio: rename)
- 10:21, 25 July 2016 (diff | hist) . . (+102) . . Non-ASL error messages (→This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox only connect to it securely.)
- 12:37, 16 March 2016 (diff | hist) . . (+1,471) . . N Vuln firewall fw ipset rule (Created page with "'''Description''' This means that your system does not support ipset type firewall rules. Ipset firewall policies load faster, and scale many times farther than regular ipta...") (top)
- 12:34, 16 March 2016 (diff | hist) . . (+1,319) . . N Vuln firewall fw log rule (Created page with "'''Description''' This means that your system does not support "log" match firewall rules. '''Resolving This Vulnerability''' You need to install the ASL kernel. ASL will...") (top)
- 12:34, 16 March 2016 (diff | hist) . . (+1,370) . . N Vuln firewall fw conntrack rule (Created page with "'''Description''' This means that your system does not support "conntrack" match firewall rules. This could indicate a serious internal error. '''Resolving This Vulnerabili...") (top)
- 12:32, 16 March 2016 (diff | hist) . . (+636) . . N Vuln firewall fw openvz limit (Created page with "'''Description''' This means that OpenVZ/Virtuozzo limits on maximum firewall rules are set so low as to not allow firewall rules to be enabled in ASL. The firewall in this c...") (top)
(Latest | Earliest) View (newer 50 | older 50) (20 | 50 | 100 | 250 | 500)