DDI RULE 2700

August 02, 2019

• Email
• Facebook
• 
  Twitter
• Google+
• Linkedin

---

 DESCRIPTION NAME:

Possible WEBSHELL - HTTP (Request)

 CONFIDENCE LEVEL:

 SEVERITY INBOUND:

 SEVERITY OUTBOUND:

Informational

Low

Medium

High

  OVERVIEW

  TECHNICAL DETAILS

Attack Phase: Point of Entry or Lateral Movement

Protocol: HTTP

Risk Type: MALWARE

Threat Type: Suspicious Behavior

Confidence Level: High

Severity: Medium

DDI Default Rule Status: Enable

APT Related: NO

  SOLUTION

Network Content Inspection Pattern Version: 1.13377.00

Network Content Inspection Pattern Release Date: 17 Jul 2018

Network Content Correlation Pattern Version: 1.13343.00

Network Content Correlation Pattern Release Date: 17 Jul 2018

Did this description help? Tell us how we did.