User contributions

From Atomicorp Wiki
Jump to: navigation, search
Search for contributions
 
 
     
  

(Latest | Earliest) View (newer 250 | ) (20 | 50 | 100 | 250 | 500)

  • 19:31, 16 December 2021 (diff | hist) . . (+1). . Code Reuse(Solution) (top)
  • 19:31, 16 December 2021 (diff | hist) . . (+511). . Code Reuse(Solution)
  • 13:15, 10 September 2021 (diff | hist) . . (+493). . Main Page
  • 15:43, 28 October 2020 (diff | hist) . . (+188). . N FIM decoder: Cannot find '/queue/db/wdb'.(Created page with "There is no known cause for this condition. Recommendations: Stop OSSEC: systemctl stop ossec-hids Ensure it is stopped: ps aux |grep ossec Start Ossec: systemctl sta...") (top)
  • 13:54, 23 October 2020 (diff | hist) . . (+10). . HIDS 2960
  • 13:54, 23 October 2020 (diff | hist) . . (+777). . N HIDS 2960(Created page with "|header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = User added to group == What you should do == ...")
  • 13:52, 23 October 2020 (diff | hist) . . (+882). . N HIDS 2945(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Rsyslog may be dropping messages due ...") (top)
  • 11:59, 23 October 2020 (diff | hist) . . (+2,092). . N WAF 303937(Created page with "{{Infobox |header1= Rule 303801 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp.com WAF Rules: Fake Baidu webcrawler }} = Description = This exc...") (top)
  • 11:51, 23 October 2020 (diff | hist) . . (+777). . N HIDS 300061(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Atomicorp.com WAF AntiSpam Rules: Possibl...") (top)
  • 11:46, 23 October 2020 (diff | hist) . . (+750). . N HIDS 60249(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Connection dropped by apache due to slow ...") (top)
  • 11:44, 23 October 2020 (diff | hist) . . (+881). . N HIDS 60138(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Webserver logged 413, request entity too ...") (top)
  • 11:43, 23 October 2020 (diff | hist) . . (+945). . N HIDS 60119(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Multiple access attempts blocked by Mod S...") (top)
  • 11:42, 23 October 2020 (diff | hist) . . (+907). . N HIDS 60118(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Access attempt blocked by Mod Security. ...") (top)
  • 11:39, 23 October 2020 (diff | hist) . . (+952). . N HIDS 60058(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...") (top)
  • 11:39, 23 October 2020 (diff | hist) . . (+932). . N HIDS 60057(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...") (top)
  • 11:38, 23 October 2020 (diff | hist) . . (+947). . N HIDS 60056(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...") (top)
  • 11:32, 23 October 2020 (diff | hist) . . (+879). . N HIDS 57390(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = SSH: Multiple successful ssh logins f...") (top)
  • 11:28, 23 October 2020 (diff | hist) . . (+708). . N HIDS 52504(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Clamav generic Warning message == Wh...") (top)
  • 11:18, 23 October 2020 (diff | hist) . . (+860). . N HIDS 40112(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Multiple login failures followed by a...") (top)
  • 11:16, 23 October 2020 (diff | hist) . . (+898). . N HIDS 40106(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Possible buffer overflow attempt == ...") (top)
  • 11:07, 23 October 2020 (diff | hist) . . (+709). . N HIDS 30618(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Apache: PHP notice in apache log == ...") (top)
  • 11:05, 23 October 2020 (diff | hist) . . (+715). . N HIDS 12149(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Bind: Multiple query (cache) failures...") (top)
  • 11:03, 23 October 2020 (diff | hist) . . (+700). . N HIDS 9707(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Dovecot: Aborted Login. == What you ...") (top)
  • 11:03, 23 October 2020 (diff | hist) . . (+723). . N HIDS 5758(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = SSH: Maximum authentication attempts ...") (top)
  • 11:01, 23 October 2020 (diff | hist) . . (+717). . N HIDS 5405(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Unauthorized user attempted to use su...") (top)
  • 11:00, 23 October 2020 (diff | hist) . . (+777). . N HIDS 4103(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Advanced portscan detected, an attack...") (top)
  • 10:58, 23 October 2020 (diff | hist) . . (+714). . N HIDS 3396(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: hostname verification failed...") (top)
  • 10:58, 23 October 2020 (diff | hist) . . (+754). . N HIDS 3381(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: (Medium 5/60s) Multiple att...") (top)
  • 10:57, 23 October 2020 (diff | hist) . . (+749). . N HIDS 3379(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: (Fast 5/10s) Multiple attemp...") (top)
  • 10:55, 23 October 2020 (diff | hist) . . (+728). . N HIDS 3337(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = IP Address black-listed by Spamhaus ...") (top)
  • 10:54, 23 October 2020 (diff | hist) . . (+780). . N HIDS 3355(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: Multiple attempts to send e-...") (top)
  • 10:54, 23 October 2020 (diff | hist) . . (+724). . N HIDS 3335(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: too many errors after RCPT f...") (top)
  • 10:53, 23 October 2020 (diff | hist) . . (+763). . N HIDS 3305(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = Postfix: Recipient address must conta...") (top)
  • 10:52, 23 October 2020 (diff | hist) . . (+804). . N HIDS 1007(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = audit failure event }} = Description = File system is full == What you sho...") (top)
  • 10:46, 23 October 2020 (diff | hist) . . (+982). . N HIDS 62818(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = Bad Gateway. The server, while acting as ...") (top)
  • 10:27, 23 October 2020 (diff | hist) . . (+711). . N HIDS 80711(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Auditd event }} = Description = Auditd: process ended abnormally == What yo...") (top)
  • 10:26, 23 October 2020 (diff | hist) . . (+732). . N HIDS 61104(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Microsoft: Service startup type was c...") (top)
  • 10:25, 23 October 2020 (diff | hist) . . (+748). . N HIDS 60809(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine has recover...") (top)
  • 10:25, 23 October 2020 (diff | hist) . . (+741). . N HIDS 60808(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine is replayin...") (top)
  • 10:23, 23 October 2020 (diff | hist) . . (+744). . N HIDS 60807(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine is initiati...") (top)
  • 10:22, 23 October 2020 (diff | hist) . . (+781). . N HIDS 60805(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine has attache...") (top)
  • 10:21, 23 October 2020 (diff | hist) . . (+752). . N HIDS 60798(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows database engine has attache...") (top)
  • 10:18, 23 October 2020 (diff | hist) . . (+731). . N HIDS 60635(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows installer reconfigured the pr...") (top)
  • 10:18, 23 October 2020 (diff | hist) . . (+743). . N HIDS 60610(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows installer as started an ins...") (top)
  • 10:17, 23 October 2020 (diff | hist) . . (+747). . N HIDS 59249(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...") (top)
  • 10:16, 23 October 2020 (diff | hist) . . (+747). . N HIDS 59246(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...") (top)
  • 10:16, 23 October 2020 (diff | hist) . . (+747). . N HIDS 59243(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...") (top)
  • 10:16, 23 October 2020 (diff | hist) . . (+746). . N HIDS 59239(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...") (top)
  • 10:15, 23 October 2020 (diff | hist) . . (+1,131). . N HIDS 19011(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 10:14, 23 October 2020 (diff | hist) . . (+1,093). . N HIDS 19010(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 10:10, 23 October 2020 (diff | hist) . . (+960). . N HIDS 18258(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Microsoft terminal server gat...") (top)
  • 10:07, 23 October 2020 (diff | hist) . . (+857). . N HIDS 18183(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Multiple MSSQL login failures...") (top)
  • 10:03, 23 October 2020 (diff | hist) . . (+992). . N HIDS 18141(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows has unexpectedly shut...") (top)
  • 10:00, 23 October 2020 (diff | hist) . . (+873). . N HIDS 5559(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = PAM event }} = Description = Authentication failure detected. == What you...") (top)
  • 09:58, 23 October 2020 (diff | hist) . . (+885). . N HIDS 536(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = Disk partition usage has reached 80% == What ...") (top)
  • 09:58, 23 October 2020 (diff | hist) . . (+892). . N HIDS 531(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = Disk partition usage has reached 90% == What ...") (top)
  • 09:34, 23 October 2020 (diff | hist) . . (+1,143). . N HIDS 19014(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 09:33, 23 October 2020 (diff | hist) . . (+1,123). . N HIDS 19013(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 09:31, 23 October 2020 (diff | hist) . . (+926). . N HIDS 19009(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 09:30, 23 October 2020 (diff | hist) . . (+771). . N HIDS 19008(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 09:29, 23 October 2020 (diff | hist) . . (+986). . N HIDS 19007(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 09:28, 23 October 2020 (diff | hist) . . (0). . HIDS 19003(top)
  • 09:28, 23 October 2020 (diff | hist) . . (+1,166). . N HIDS 19005(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 09:27, 23 October 2020 (diff | hist) . . (+1,166). . N HIDS 19003(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...")
  • 09:26, 23 October 2020 (diff | hist) . . (+765). . N HIDS 23506(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Vulnerability scanner has det...") (top)
  • 09:25, 23 October 2020 (diff | hist) . . (+764). . N HIDS 23504(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Vulnerability scanner has det...") (top)
  • 09:25, 23 October 2020 (diff | hist) . . (+761). . N HIDS 23503(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Vulnerability scanner has det...") (top)
  • 09:23, 23 October 2020 (diff | hist) . . (+1,005). . N HIDS 18145(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows service startup type ...") (top)
  • 09:21, 23 October 2020 (diff | hist) . . (+1,162). . N HIDS 3398(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Postfix event }} = Description = Postfix is indicating that an invalid (aka ...") (top)
  • 09:18, 23 October 2020 (diff | hist) . . (+824). . N HIDS 80717(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Auditd event }} = Description = Auditd: Role-Based Access Control (RBAC) fai...") (top)
  • 09:15, 23 October 2020 (diff | hist) . . (+744). . N HIDS 5555(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = PAM event }} = Description = PAM has logged that the user account password h...") (top)
  • 09:13, 23 October 2020 (diff | hist) . . (+1,132). . N HIDS 81544(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has reported the system is less t...") (top)
  • 09:13, 23 October 2020 (diff | hist) . . (+1,132). . N HIDS 81542(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has reported the system is less t...") (top)
  • 09:12, 23 October 2020 (diff | hist) . . (+1,132). . N HIDS 81541(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has reported the system is less t...") (top)
  • 09:10, 23 October 2020 (diff | hist) . . (+1,086). . N HIDS 62819(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = The webserver has returned a 503 error co...") (top)
  • 09:06, 23 October 2020 (diff | hist) . . (+1,366). . N HIDS 59221(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows user account has changed. Th...") (top)
  • 14:53, 22 October 2020 (diff | hist) . . (+868). . N HIDS 504(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = An agent has disconnected from the server. =...") (top)
  • 14:51, 22 October 2020 (diff | hist) . . (+722). . N HIDS 3334(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Postfix has started successfu...") (top)
  • 14:50, 22 October 2020 (diff | hist) . . (+713). . N HIDS 80703(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Auditd has stopped successful...") (top)
  • 14:49, 22 October 2020 (diff | hist) . . (+715). . N HIDS 80701(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Auditd has restarted successf...") (top)
  • 13:55, 22 October 2020 (diff | hist) . . (+856). . N HIDS 2932(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Yum event }} = Description = The yum package manager has installed a package...") (top)
  • 13:53, 22 October 2020 (diff | hist) . . (+868). . N HIDS 3333(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Postfix event }} = Description = The Postfix mail server has stopped == Wha...") (top)
  • 13:51, 22 October 2020 (diff | hist) . . (+907). . N HIDS 59302(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Global Group...") (top)
  • 13:49, 22 October 2020 (diff | hist) . . (+1,107). . N HIDS 62816(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Webserver event }} = Description = The webserver has returned a 500 error cod...") (top)
  • 13:45, 22 October 2020 (diff | hist) . . (+843). . N HIDS 2934(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Yum event }} = Description = The yum package manager as removed a package. ...") (top)
  • 13:42, 22 October 2020 (diff | hist) . . (+953). . N HIDS 60126(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Apache event }} = Description = Webserver authorization failed (401) == What...") (top)
  • 12:40, 22 October 2020 (diff | hist) . . (+762). . N HIDS 23505(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Vulnerability scanner has det...") (top)
  • 12:09, 22 October 2020 (diff | hist) . . (+868). . N HIDS 59327(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows network login failure...") (top)
  • 12:07, 22 October 2020 (diff | hist) . . (+1,031). . N HIDS 59300(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = IIS NetworkCleartext Logon su...") (top)
  • 12:04, 22 October 2020 (diff | hist) . . (+859). . N HIDS 18154(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Multiple windows ERROR messag...") (top)
  • 12:02, 22 October 2020 (diff | hist) . . (+829). . N HIDS 59208(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Session reconnected/disconnec...") (top)
  • 12:00, 22 October 2020 (diff | hist) . . (+768). . N HIDS 18600(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Generic level 0 bucket for wi...") (top)
  • 11:58, 22 October 2020 (diff | hist) . . (+795). . N HIDS 554(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = FIM event }} = Description = FIM has detected a new file was added to the sy...") (top)
  • 11:57, 22 October 2020 (diff | hist) . . (+879). . N HIDS 59328(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows network login failure...") (top)
  • 11:55, 22 October 2020 (diff | hist) . . (+741). . N HIDS 81528(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has skipped this test because it ...") (top)
  • 11:54, 22 October 2020 (diff | hist) . . (+973). . N HIDS 59330(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows: Network Logon Failur...") (top)
  • 11:51, 22 October 2020 (diff | hist) . . (+990). . N HIDS 59326(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows Local login failure d...") (top)
  • 11:48, 22 October 2020 (diff | hist) . . (+785). . N HIDS 18305(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows Application Event (10...") (top)
  • 11:46, 22 October 2020 (diff | hist) . . (+823). . N HIDS 510(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Rootcheck event }} = Description = Host-based anomaly detection event (rootc...") (top)
  • 11:44, 22 October 2020 (diff | hist) . . (+756). . N HIDS 503(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = OSSEC agent started. == What you should do =...") (top)
  • 11:43, 22 October 2020 (diff | hist) . . (+785). . N HIDS 18303(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows Application Event (82...") (top)
  • 11:40, 22 October 2020 (diff | hist) . . (+826). . N HIDS 59248(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Global group...") (top)
  • 11:38, 22 October 2020 (diff | hist) . . (+835). . N HIDS 59210(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows user account has chan...") (top)
  • 11:36, 22 October 2020 (diff | hist) . . (+760). . N HIDS 18147(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows application installed...") (top)
  • 11:33, 22 October 2020 (diff | hist) . . (+878). . N HIDS 512(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Rootcheck event }} = Description = Rootcheck has detected a compliance failu...") (top)
  • 11:31, 22 October 2020 (diff | hist) . . (+808). . N HIDS 59241(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Global Group...") (top)
  • 11:29, 22 October 2020 (diff | hist) . . (+952). . N HIDS 59213(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows group account has cha...") (top)
  • 11:27, 22 October 2020 (diff | hist) . . (+836). . N HIDS 607(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = Active Reponse has been triggered. == What...") (top)
  • 11:24, 22 October 2020 (diff | hist) . . (+805). . N HIDS 59242(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Global Group...") (top)
  • 11:22, 22 October 2020 (diff | hist) . . (+882). . N HIDS 5716(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = SSH event }} = Description = SSH authentication failed. == What you should d...") (top)
  • 11:20, 22 October 2020 (diff | hist) . . (+912). . N HIDS 59334(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Multime attempts to access an...") (top)
  • 11:17, 22 October 2020 (diff | hist) . . (+736). . N HIDS 81529(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP test has failed. == What you shou...") (top)
  • 11:16, 22 October 2020 (diff | hist) . . (+634). . N HIDS 81521(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP test has passed. == What you sho...") (top)
  • 11:13, 22 October 2020 (diff | hist) . . (-113). . HIDS 81530(top)
  • 11:13, 22 October 2020 (diff | hist) . . (-1,317). . HIDS 81530
  • 11:12, 22 October 2020 (diff | hist) . . (+2,297). . N HIDS 81530(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows has failed to properl...")
  • 11:10, 22 October 2020 (diff | hist) . . (+817). . N HIDS 61102(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows generic Error event. ...") (top)
  • 10:59, 22 October 2020 (diff | hist) . . (+928). . N HIDS 83201(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = The internet explorer log fil...") (top)
  • 10:56, 22 October 2020 (diff | hist) . . (-123). . HIDS 59209(top)
  • 10:55, 22 October 2020 (diff | hist) . . (+1,024). . N HIDS 59209(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows detected a logon fail...")
  • 10:47, 22 October 2020 (diff | hist) . . (+882). . N HIDS 59215(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows: User account has bee...") (top)
  • 10:45, 22 October 2020 (diff | hist) . . (+853). . N HIDS 18306(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows Application Event (10...") (top)
  • 10:39, 22 October 2020 (diff | hist) . . (+926). . N HIDS 59304(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Multiple Windows login failur...") (top)
  • 10:33, 22 October 2020 (diff | hist) . . (+847). . N HIDS 18146(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows application uninstall...") (top)
  • 10:31, 22 October 2020 (diff | hist) . . (+932). . N HIDS 59309(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows IPSec VPN negotiation...") (top)
  • 10:28, 22 October 2020 (diff | hist) . . (+953). . N HIDS 18105(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Generic Windows auditing has ...") (top)
  • 10:24, 22 October 2020 (diff | hist) . . (+807). . N HIDS 59211(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows user account has been...") (top)
  • 10:23, 22 October 2020 (diff | hist) . . (+879). . N HIDS 516(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Rootcheck event }} = Description = OSSEC Rootcheck has identified a complian...") (top)
  • 10:21, 22 October 2020 (diff | hist) . . (+793). . N HIDS 59244(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Local Group ...") (top)
  • 10:20, 22 October 2020 (diff | hist) . . (+853). . N HIDS 59245(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Security Enabled Local Group ...") (top)
  • 10:18, 22 October 2020 (diff | hist) . . (+1,073). . N HIDS 18601(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows System Event (7038): ...") (top)
  • 10:16, 22 October 2020 (diff | hist) . . (+812). . N HIDS 19004(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = CIS Compliance event }} = Description = CIS Benchmark has scored less than 5...") (top)
  • 10:10, 22 October 2020 (diff | hist) . . (+813). . N HIDS 59233(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = User account unlocked. == W...") (top)
  • 10:09, 22 October 2020 (diff | hist) . . (+949). . N HIDS 60059(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Atomicorp Threat Intel event }} = Description = The source IP address was de...") (top)
  • 10:05, 22 October 2020 (diff | hist) . . (+1,430). . N HIDS 18301(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows has failed to write t...") (top)
  • 10:03, 22 October 2020 (diff | hist) . . (+770). . N HIDS 501(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = An OSSEC agent has started. ...") (top)
  • 10:02, 22 October 2020 (diff | hist) . . (+740). . N HIDS 80705(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Auditd event }} = Description = Auditd configuration has changed. == What ...") (top)
  • 10:00, 22 October 2020 (diff | hist) . . (+863). . N HIDS 59252(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Security Enabled Universal Group Memb...") (top)
  • 09:57, 22 October 2020 (diff | hist) . . (+999). . N HIDS 60790(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = This indicates that the reigs...") (top)
  • 09:54, 22 October 2020 (diff | hist) . . (+816). . N HIDS 59250(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Security Enabled Universal Group Chan...") (top)
  • 09:53, 22 October 2020 (diff | hist) . . (+830). . N HIDS 59251(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Security Enabled Universal Group Memb...") (top)
  • 09:51, 22 October 2020 (diff | hist) . . (-694). . HIDS 83200(top)
  • 09:49, 22 October 2020 (diff | hist) . . (+1,430). . N HIDS 83200(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Windows has failed to properl...")
  • 09:46, 22 October 2020 (diff | hist) . . (+928). . N HIDS 11(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = This is an internal OSSEC anomaly detection e...") (top)
  • 09:39, 22 October 2020 (diff | hist) . . (+986). . N HIDS 40703(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Systemd event }} = Description = Systemd has detected that a service is in a...") (top)
  • 09:37, 22 October 2020 (diff | hist) . . (+879). . N HIDS 81543(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP Report overview: Score is less th...") (top)
  • 09:34, 22 October 2020 (diff | hist) . . (+833). . N HIDS 19015(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = CIS Compliance event }} = Description = Status has changed from 'not applica...") (top)
  • 09:32, 22 October 2020 (diff | hist) . . (+965). . N HIDS 59207(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = This indicates that the specified use...") (top)
  • 13:45, 21 October 2020 (diff | hist) . . (+773). . N HIDS 19012(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = CIS Compliance event }} = Description = CIS Compliance benchmark for this se...") (top)
  • 13:42, 21 October 2020 (diff | hist) . . (+746). . N HIDS 7501(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Mcafee event }} = Description = Mcafee Informational level event. == What...") (top)
  • 13:39, 21 October 2020 (diff | hist) . . (+820). . N HIDS 533(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = OSSEC Rootkit detection has detected a servic...") (top)
  • 13:37, 21 October 2020 (diff | hist) . . (+753). . N HIDS 81531(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = OpenSCAP has indicated that the compliance ...") (top)
  • 13:35, 21 October 2020 (diff | hist) . . (+673). . N HIDS 81522(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OpenSCAP event }} = Description = Informational message indicating the setti...") (top)
  • 13:33, 21 October 2020 (diff | hist) . . (+907). . N HIDS 514(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Rootcheck has detected an app...") (top)
  • 13:30, 21 October 2020 (diff | hist) . . (+647). . N HIDS 502(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC event }} = Description = OSSEC Server Service has been restarted == Wh...") (top)
  • 13:29, 21 October 2020 (diff | hist) . . (+664). . N HIDS 5715(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = SSH event }} = Description = A successful SSH login has been detected == Wha...") (top)
  • 13:27, 21 October 2020 (diff | hist) . . (+653). . N HIDS 52506(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Clamav event }} = Description = The Clam-AV malware database has been update...") (top)
  • 13:25, 21 October 2020 (diff | hist) . . (+1,414). . N HIDS 59306(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Composite rule for multiple w...") (top)
  • 13:22, 21 October 2020 (diff | hist) . . (+675). . N HIDS 506(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = OSSEC Audit event }} = Description = Indicates that the OSSEC client.keys fi...") (top)
  • 13:21, 21 October 2020 (diff | hist) . . (+1,010). . N HIDS 60602(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = This is a generic catchall for Window...") (top)
  • 13:15, 21 October 2020 (diff | hist) . . (+989). . N HIDS 80730(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = SELinux event }} = Description = SELinux has logged a permissions violation...") (top)
  • 13:12, 21 October 2020 (diff | hist) . . (+1,091). . N HIDS 60608(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows error event }} = Description = This is a summary event from the win...") (top)
  • 13:07, 21 October 2020 (diff | hist) . . (+1,003). . N HIDS 59247(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A local security group has been been...") (top)
  • 13:03, 21 October 2020 (diff | hist) . . (+898). . N HIDS 5108(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Linux System Event }} = Description = The Linux kernel has indicated that th...") (top)
  • 13:01, 21 October 2020 (diff | hist) . . (+1,491). . N HIDS 18153(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = This is a composite rule, 10 ...") (top)
  • 12:59, 21 October 2020 (diff | hist) . . (+1,026). . N HIDS 60642(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = This event indicates that the Softwar...") (top)
  • 12:54, 21 October 2020 (diff | hist) . . (+1,204). . N HIDS 60702(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = This indicates that the VSS s...") (top)
  • 12:49, 21 October 2020 (diff | hist) . . (+1,880). . N HIDS 59335(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows threat protection has indica...") (top)
  • 12:44, 21 October 2020 (diff | hist) . . (+1,021). . N HIDS 61138(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A new windows service has been added...") (top)
  • 12:39, 21 October 2020 (diff | hist) . . (+721). . N HIDS 81101(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = USB Auditing rule }} = Description = A new USB device has been attached to t...") (top)
  • 12:37, 21 October 2020 (diff | hist) . . (+782). . N HIDS 593(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Ossec event log }} = Description = This indicates that the OSSEC event log ...") (top)
  • 12:34, 21 October 2020 (diff | hist) . . (+1,151). . N HIDS 61060(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows performance library }} = Description = This indicates that the windo...") (top)
  • 12:28, 21 October 2020 (diff | hist) . . (+1,010). . N HIDS 59240(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A security enabled group has been cr...") (top)
  • 12:23, 21 October 2020 (diff | hist) . . (+1,043). . N HIDS 18259(Created page with " {{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = Windows Terminal Server has indicate...") (top)
  • 12:21, 21 October 2020 (diff | hist) . . (+940). . N HIDS 52511(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Anti-Virus }} = Description = This is a generic (level 3) event to collect r...") (top)
  • 12:17, 21 October 2020 (diff | hist) . . (+747). . N HIDS 59238(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit event }} = Description = A windows active directory group acco...") (top)
  • 12:14, 21 October 2020 (diff | hist) . . (0). . HIDS 60612(top)
  • 12:14, 21 October 2020 (diff | hist) . . (+921). . N HIDS 60612(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows System Event }} = Description = Application has been installed on th...")
  • 12:10, 21 October 2020 (diff | hist) . . (+1,111). . N HIDS 18602(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows System Event }} = Description = Composite rule identified multiple W...") (top)
  • 12:05, 21 October 2020 (diff | hist) . . (+1,166). . N HIDS 19002(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Compliance Scanner }} = Description = The CIS Compliance scanner is reportin...") (top)
  • 12:01, 21 October 2020 (diff | hist) . . (+1,012). . N HIDS 61110(Created page with "{{Infobox |header1 = Rule 1 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Windows audit failure event }} = Description = Composite IDS rule indicating...") (top)
  • 11:57, 9 January 2018 (diff | hist) . . (-33). . ASL FAQ(What Linux distributions do you support?)
  • 12:17, 8 January 2018 (diff | hist) . . (-2). . Unattended installs
  • 12:56, 14 December 2017 (diff | hist) . . (+895). . N HIDS 171002(Created page with " {{Infobox |header1= Rule 171002 |label2 = Status |data2 = Active |label3 = Alert Message |data3 = Exim authentication failure }} = Description = This means that an applica...") (top)
  • 13:05, 12 September 2017 (diff | hist) . . (+145). . Nginx(NGINX with Libmodsecurity 3.0)
  • 11:56, 11 August 2017 (diff | hist) . . (+1). . Nginx(NGINX for Libmodsecurity 3.0)
  • 11:52, 11 August 2017 (diff | hist) . . (+3). . Nginx(Does ASL work with Nginx?)
  • 11:47, 11 August 2017 (diff | hist) . . (+851). . Nginx
  • 12:42, 12 April 2017 (diff | hist) . . (-75). . Atomic ModSecurity Rules(About the rules)
  • 16:29, 6 March 2017 (diff | hist) . . (+439). . N HIDS 38001(Created page with "'''Rule ID''' 38001 '''Message''' Plesk saslauthd Failed mail authenticatication attempt '''Description''' This rule detects when Plesk's sassauthd daemon records a s...")
  • 13:51, 1 March 2017 (diff | hist) . . (+564). . N HIDS 60034(Created page with "'''Rule ID''' 60034 '''Status''' Active rule currently published. '''Description''' This rule is a catch all rule that detects when an application is exceeding the sys...") (top)
  • 17:28, 23 February 2017 (diff | hist) . . (+330). . ASL error messages
  • 13:06, 19 December 2016 (diff | hist) . . (+1). . ASL FAQ(What is the benefit of Subscribing to ASL?)
  • 08:43, 15 September 2016 (diff | hist) . . (+5). . ASL error messages
  • 08:41, 15 September 2016 (diff | hist) . . (+369). . ASL error messages(error: unpacking of archive failed on file /var/asl/etc/httpd/logs: cpio: rename)
  • 11:21, 25 July 2016 (diff | hist) . . (+102). . Non-ASL error messages(This site uses HTTP Strict Transport Security (HSTS) to specify that Firefox only connect to it securely.)
  • 13:37, 16 March 2016 (diff | hist) . . (+1,471). . N Vuln firewall fw ipset rule(Created page with "'''Description''' This means that your system does not support ipset type firewall rules. Ipset firewall policies load faster, and scale many times farther than regular ipta...") (top)
  • 13:34, 16 March 2016 (diff | hist) . . (+1,319). . N Vuln firewall fw log rule(Created page with "'''Description''' This means that your system does not support "log" match firewall rules. '''Resolving This Vulnerability''' You need to install the ASL kernel. ASL will...") (top)
  • 13:34, 16 March 2016 (diff | hist) . . (+1,370). . N Vuln firewall fw conntrack rule(Created page with "'''Description''' This means that your system does not support "conntrack" match firewall rules. This could indicate a serious internal error. '''Resolving This Vulnerabili...") (top)
  • 13:32, 16 March 2016 (diff | hist) . . (+636). . N Vuln firewall fw openvz limit(Created page with "'''Description''' This means that OpenVZ/Virtuozzo limits on maximum firewall rules are set so low as to not allow firewall rules to be enabled in ASL. The firewall in this c...") (top)
  • 13:28, 16 March 2016 (diff | hist) . . (+1,273). . N Vuln firewall fw wait rule(Created page with "'''Description''' This means that your system does not support "wait" match firewall rules. '''Resolving This Vulnerability''' You need to install the ASL kernel. ASL will...") (top)
  • 13:27, 16 March 2016 (diff | hist) . . (+1,428). . N Vuln firewall fw owner rule(Created page with "'''Description''' This means that your system does not support "owner" match firewall rules. Firewall policies that depend on matching user ID's such as the outbound mail pol...") (top)
  • 13:26, 16 March 2016 (diff | hist) . . (+1,319). . N Vuln firewall fw limit rule(Created page with "'''Description''' This means that your system does not support "limit" match firewall rules. '''Resolving This Vulnerability''' You need to install the ASL kernel. ASL will...") (top)
  • 13:25, 16 March 2016 (diff | hist) . . (+1,325). . N Vuln firewall fw connlimit rule(Created page with "'''Description''' This means that your system does not support "connlimit" match firewall rules. '''Resolving This Vulnerability''' You need to install the ASL kernel. AS...") (top)
  • 13:24, 16 March 2016 (diff | hist) . . (+1,322). . N Vuln firewall fw recent rule(Created page with "'''Description''' This means that your system does not support "recent" match firewall rules. '''Resolving This Vulnerability''' You need to install the ASL kernel. ASL w...") (top)
  • 13:23, 16 March 2016 (diff | hist) . . (+1,393). . N Vuln firewall fw lscan rule(Created page with "'''Description''' This means that your system does not support "lscan" match firewall rules. The low level port scan detection capability in ASL will be unavailable. '''Res...") (top)
  • 13:22, 16 March 2016 (diff | hist) . . (+1,381). . N Vuln firewall fw psd rule(Created page with "'''Description''' This means that your system does not support "psd" match firewall rules. The port scan detection capability in ASL will be unavailable. '''Resolving This ...") (top)
  • 13:21, 16 March 2016 (diff | hist) . . (+1,376). . N Vuln firewall fw portknock rule(Created page with "'''Description''' This means that your system does not support "pknock" match firewall rules. The portknocking capability in ASL wil be unavailable. '''Resolving This Vulne...") (top)
  • 12:48, 16 March 2016 (diff | hist) . . (+1,268). . N Vuln firewall fw comment rule(Created page with "'''Description''' This means that your system does not support COMMENT match firewall rules. '''Resolving This Vulnerability''' You need to install the ASL kernel. ASL wil...") (top)
  • 12:47, 16 March 2016 (diff | hist) . . (+6). . Vuln firewall fw state tracking(top)
  • 12:47, 16 March 2016 (diff | hist) . . (-2). . Vuln firewall fw state tracking
  • 12:47, 16 March 2016 (diff | hist) . . (+12). . Vuln firewall fw state tracking
  • 12:46, 16 March 2016 (diff | hist) . . (+868). . N Vuln firewall fw state tracking(Created page with "'''Description''' This means that your system does allow creating state tracking rules. This means that services like FTP are non-functional, and regular firewall rules are a...")
  • 12:41, 16 March 2016 (diff | hist) . . (+544). . N Vuln firewall fw delete table(Created page with "'''Description''' This means that deleting firewall tables using the iptables -D command failed. It is likely that the firewall on this system is completely non-functional, a...") (top)
  • 12:40, 16 March 2016 (diff | hist) . . (+544). . N Vuln firewall fw create table(Created page with "'''Description''' This means that creating firewall tables using the iptables -N command failed. It is likely that the firewall on this system is completely non-functional, a...") (top)
  • 12:39, 16 March 2016 (diff | hist) . . (+553). . N Vuln firewall fw list check(Created page with "'''Description''' This means that basic listing of firewall rules using the iptables -L command failed. It is likely that the firewall on this system is completely non-functi...") (top)
  • 12:33, 16 March 2016 (diff | hist) . . (+1,270). . N Vuln clamav realtime(Created page with "'''Description''' This means that you the ClamAV real-time malware scanner was not available. '''Resolving This Vulnerability''' You need to install the ASL kernel. ASL w...") (top)
  • 12:27, 16 March 2016 (diff | hist) . . (+18). . Vuln firewall fw status(top)
  • 12:27, 16 March 2016 (diff | hist) . . (+618). . N Vuln firewall fw status(Created page with "Description This means that the ASL network firewall is not active, and no firewall rules are loaded. This means that all firewall based policies are INACTIVE, including blac...")
  • 12:23, 16 March 2016 (diff | hist) . . (+1,267). . N Vuln firewall fw geoip rule(Created page with "'''Description''' This means that your system does not support GEOIP match firewall rules. '''Resolving This Vulnerability''' You need to install the ASL kernel. ASL will...") (top)
  • 09:34, 24 February 2016 (diff | hist) . . (+340). . N Rbldnsd(top)
  • 16:48, 7 January 2016 (diff | hist) . . (-14). . Kernel(Manual Kernel Installation)
  • 16:46, 7 January 2016 (diff | hist) . . (+133). . Kernel(Development Kernel)
  • 11:16, 7 January 2016 (diff | hist) . . (+163). . ASL error messages(error: unpacking of archive failed on file /var/asl/etc/httpd/logs: cpio: rename)
  • 11:15, 7 January 2016 (diff | hist) . . (+229). . ASL error messages(Generic Errors/Issues)
  • 11:11, 7 January 2016 (diff | hist) . . (-5). . ASL FAQ(Why do they call it Europe?)
  • 11:18, 22 December 2015 (diff | hist) . . (+6). . ASL 4 Virtualization Notes(KVM) (top)
  • 17:36, 17 November 2015 (diff | hist) . . (+158). . Kernel(Development Kernel)
  • 17:34, 17 November 2015 (diff | hist) . . (+537). . Kernel(Testing the Kernel)
  • 11:42, 2 November 2015 (diff | hist) . . (0). . X with ASL(From this point forward you should have X working)
  • 11:41, 2 November 2015 (diff | hist) . . (+71). . X with ASL(From this point forward you should have X working)
  • 15:22, 23 September 2015 (diff | hist) . . (-48). . ASL prerequisites(Centos 7)
  • 15:21, 23 September 2015 (diff | hist) . . (+112). . ASL prerequisites(Centos)
  • 20:47, 4 January 2015 (diff | hist) . . (-449). . ASL Troubleshooting(No events in the ASL GUI)
  • 14:02, 21 November 2014 (diff | hist) . . (-29). . Downloading Rules(Just a downloader)
  • 12:32, 17 November 2014 (diff | hist) . . (0). . Downloading Rules(Just a downloader)
  • 08:54, 17 October 2014 (diff | hist) . . (+1,609). . N Remote SysLog(Created page with "The Remote SysLog window allows enabling and configuring remote logging and archiving. Setting 'Enable Remote Syslog Retention' to 'yes' will show display the available optio...") (top)
  • 08:52, 17 October 2014 (diff | hist) . . (0). . N File:Aslw rsyslog.png(top)
  • 08:37, 17 October 2014 (diff | hist) . . (+84). . ASL Web Usage Guide(top)
  • 12:56, 9 October 2014 (diff | hist) . . (-35). . ASL Web Usage Guide
  • 12:53, 9 October 2014 (diff | hist) . . (+26). . Event Report window(top)
  • 12:52, 9 October 2014 (diff | hist) . . (+28). . Country Report window(top)
  • 12:52, 9 October 2014 (diff | hist) . . (+25). . Rule Report window(top)
  • 12:52, 9 October 2014 (diff | hist) . . (+24). . IP Report window(top)
  • 12:51, 9 October 2014 (diff | hist) . . (0). . N File:Aslw rrule.png(top)
  • 12:51, 9 October 2014 (diff | hist) . . (0). . N File:Aslw rip.png(top)
  • 12:51, 9 October 2014 (diff | hist) . . (0). . N File:Aslw revent.png(top)
  • 12:51, 9 October 2014 (diff | hist) . . (0). . N File:Aslw rcountry.png(top)
  • 12:47, 9 October 2014 (diff | hist) . . (-43). . System Monitor(top)
  • 12:47, 9 October 2014 (diff | hist) . . (0). . N File:Aslw sm.png(top)

(Latest | Earliest) View (newer 250 | ) (20 | 50 | 100 | 250 | 500)

Views
Personal tools