Search
Keyword: arp flooding attack
Description Name: PsExec - SMB - Variant 2 . This is Trend Micro detection for packets passing through SMB2 and SMB network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Su...
Description Name: CVE-2017-7269 - WebDAV Buffer Overflow - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host exhibiting this type...
Description Name: CVE-2019-10149 Exim Remote Code Execution Exploit - SMTP (Request) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The ho...
Description Name: CVE-2020-0618 - SQL Server Reporting Services Remote Code Execution Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral M...
Description Name: Remote Delete Job through SMB2 ATSVC Detected . This is Trend Micro detection for packets passing through SMB2 network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusua...
Description Name: Possible MS14-068_KERBEROS Checksum Vulnerability . This is Trend Micro detection for packets passing through KERBEROS network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators o...
Description Name: Remote Schedule Tasks through SMB2 protocol detected - Run Command . This is Trend Micro detection for packets passing through SMB2 network protocols that manifests unusual behavior which can be a potential intrusion. Below are some...
Description Name: PsExec - SMB . This is Trend Micro detection for packets passing through SMB2 and SMB network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Suspicious act...
Description Name: CPL File Transfer detected . This is Trend Micro detection for packets passing through any network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Suspiciou...
Deployment Services TFTP Server Remote Code Execution Vulnerability (CVE-2018-8476) Web Application Common 1005934* - Identified Suspicious Command Injection Attack Web Client Internet Explorer/Edge 1009244* -
Description Name: CVE-2021-26855 - Exchange Server Side Request Forgery Exploit - HTTP (REQUEST) - Variant 2 . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Mov...
Description Name: Possible Traffic Signaling - TCP (Request) . This is Trend Micro detection for packets passing through TCP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual be...
Description Name: Traffic with Base64 Encode - TCP (Request) . This is Trend Micro detection for packets passing through TCP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual be...
Description Name: PsExec - SMB2 (Request) . This is Trend Micro detection for packets passing through SMB2 network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Suspicious ...
Multiple Security Vulnerabilities Web Server HTTPS 1011519 - Node.js HTTP Request Smuggling Attack (CVE-2022-32214) Zimbra Admin Console Ports 1011513* - Zimbra Collaboration Multiple Directory Traversal
Description Name: WINEXE DETECTED - SMB2(REQUEST) . This is Trend Micro detection for packets passing through SMB2 network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Sus...
Description Name: MIMIKATZ SHELL - HTTP(RESPONSE) . This is Trend Micro detection for packets passing through HTTP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Sus...
Description Name: MIMIKATZ SHELL - TCP . This is Trend Micro detection for packets passing through TCP network protocols that manifests unusual behavior which can be a potential intrusion. Below are some indicators of unusual behavior:Suspicious acti...
Description Name: CVE-2023-22515 - Atlassian Confluence Data Center Broken Access Control Exploit - HTTP (Request) . This is Trend Micro detection for HTTP network protocol that manifests exploit activities and can be used for Point of Entry or Later...
Description Name: CVE-2023-32252 - Linux Kernel ksmbd NULL Pointer Exploit - SMB2 (Request) . This is Trend Micro detection for SMB2 network protocol that manifests exploit activities and can be used for Point of Entry or Lateral Movement.The host ex...