GigaVPN

시그니처 리스트, Signature List

번호	날짜	ID	시그니처 (Total Ruleset: 27,111개)
9,361	2015/01/20	2012006	ET WEB_SPECIFIC_APPS MassMirror Uploader example_1.php Remote File Inclusion attempt; [1]
9,360	2015/01/20	2012005	ET WEB_SPECIFIC_APPS digiSHOP cart.php UPDATE SET SQL Injection Attempt; [1]
9,359	2015/01/20	2012004	ET WEB_SPECIFIC_APPS digiSHOP cart.php INSERT INTO SQL Injection Attempt; [1]
9,358	2015/01/20	2012003	ET WEB_SPECIFIC_APPS digiSHOP cart.php UNION SELECT SQL Injection Attempt; [1]
9,357	2015/01/20	2012002	ET WEB_SPECIFIC_APPS digiSHOP cart.php DELETE FROM SQL Injection Attempt; [1]
9,356	2015/01/20	2012001	ET WEB_SPECIFIC_APPS digiSHOP cart.php SELECT FROM SQL Injection Attempt; [1]
9,355	2015/01/20	2012000	ET MALWARE ASKTOOLBAR.DLL Reporting; [1]
9,354	2015/01/20	2011999	ET TROJAN Trojan.Spy.YEK MAC and IP POST; [1]
9,353	2015/01/20	2011996	ET TROJAN Darkness DDoS Bot Checkin; [1,2,3,4,5,6]
9,352	2015/01/20	2011995	ET TROJAN Suspicious invoice.scr Download Request;
9,351	2015/01/20	2011994	ET FTP ProFTPD Backdoor Inbound Backdoor Open Request (ACIDBITCHEZ); [1,2,3]
9,350	2015/01/20	2011993	ET DELETED ProFTPD Backdoor outbound Request Sent; [1,2,3]
9,349	2015/01/20	2011992	ET DELETED Possible ProFTPD Backdoor Initiate Attempt; [1,2,3]
9,348	2015/01/20	2011991	ET TROJAN FAKEAV Gemini systempack exe download;
9,347	2015/01/20	2011990	ET DELETED Suspicious executable download possible Rogue AV (installer.xxxx.exe); [1]
9,346	2015/01/20	2011989	ET TROJAN Suspicious executable download adobe-flash.v; [1]
9,345	2015/01/20	2011988	ET CURRENT_EVENTS Phoenix-style Exploit Kit Java Request with semicolon in URI;
9,344	2015/01/20	2011987	ET WEB_SPECIFIC_APPS Softbiz Article Directory Script sbiz_id Parameter Blind SQL Injection Attempt; [1]
9,343	2015/01/20	2011986	ET DELETED Suspicious executable download possible Fast Flux Rogue Antivirus RunAV; [1,2,3,4]
9,342	2015/01/20	2011985	ET DELETED Suspicious executable download possible Fast Flux Rogue Antivirus avdistr; [1,2,3,4]
9,341	2015/01/20	2011984	ET DELETED Suspicious executable download possible Fast Flux Rogue Antivirus MalvRem; [1,2,3,4]
9,340	2015/01/20	2011983	ET DELETED Suspicious executable download possible Fast Flux Trojan; [1]
9,339	2015/01/20	2011982	ET TROJAN Suspicious flash_player.exe Download; [1]
9,338	2015/01/20	2011981	ET DELETED Suspicious executable download possible Eleonore Exploit Pack / Trojan Brebolab; [1]
9,337	2015/01/20	2011980	ET DELETED Suspicious executable download possible Ircbrute Trojan; [1]
9,336	2015/01/20	2011979	ET TROJAN FedEX Spam Inbound;
9,335	2015/01/20	2011978	ET CURRENT_EVENTS MALVERTISING Alureon JavaScript IFRAME Redirect;
9,334	2015/01/20	2011976	ET SCADA RealWin SCADA System Buffer Overflow; [1]
9,333	2015/01/20	2011975	ET SCAN RatProxy in-use;
9,332	2015/01/20	2011974	ET SCAN Metasploit WMAP GET len 0 and type;
9,331	2015/01/20	2011973	ET CURRENT_EVENTS JAR served from /tmp/ could be Phoenix Exploit Kit;
9,330	2015/01/20	2011972	ET CURRENT_EVENTS PDF served from /tmp/ could be Phoenix Exploit Kit;
9,329	2015/01/20	2011970	ET CURRENT_EVENTS SWF served from /tmp/;
9,328	2015/01/20	2011969	ET TROJAN Ponmocup C2 Post-infection Checkin;
9,327	2015/01/20	2011968	ET DELETED Trojan Banker (AS33182); [1]
9,326	2015/01/20	2011967	ET TROJAN Suspicious bot.exe Request; [1]
9,325	2015/01/20	2011966	ET DELETED Trojan downloader (AS8514); [1]
9,324	2015/01/20	2011962	ET DELETED FAKEAV client requesting fake scanner page;
9,323	2015/01/20	2011961	ET DELETED MALVERTISING SEO iframe redirect to drive by 2;
9,322	2015/01/20	2011960	ET DELETED MALVERTISING SEO iframe redirect to drive by;
9,321	2015/01/20	2011959	ET DELETED DRIVEBY SEO Obfuscated JavaScript srctable;
9,320	2015/01/20	2011958	ET DELETED DRIVEBY SEO Obfuscated JavaScript desttable;
9,319	2015/01/20	2011957	ET DELETED DRIVEBY SEO Landing Page Encountered;
9,318	2015/01/20	2011956	ET DELETED DRIVEBY SEO Client Requesting Malicious loadpeers.php;
9,317	2015/01/20	2011955	ET DELETED DRIVEBY SEO Client Requesting Malicious lib.pdf;
9,316	2015/01/20	2011954	ET DELETED DRIVEBY SEO Client Requesting Malicious loadjjar.php;
9,315	2015/01/20	2011953	ET DELETED DRIVEBY SEO Client Requesting Malicious jjar.jar;
9,314	2015/01/20	2011952	ET DELETED DRIVEBY SEO Client Exploited By PDF;
9,313	2015/01/20	2011951	ET DELETED DRIVEBY SEO Client Exploited By SMB/JavaWebStart;
9,312	2015/01/20	2011950	ET WEB_SPECIFIC_APPS AWCM header.php Remote File Inclusion Attempt; [1]
< 351 352 353 354 355 356 357 358 359 360 >

GigaVPN & GigaIPS is based MikroTik, Suricata and EmergingThreats.

서비스 정보가 없습니다.

Add-on 1.2 다운로드

02-1544-4450

보안 '키워드'

Ransomware: 파일/폴더를 암호화하여 금품을 요구

Backdoor: 시스템에 숨겨진 해킹 프로그램

WebShell: 웹서버에 명령을 실행해 관리자 권한 획득

Sipvicious: 인터넷 전화 해킹툴

Trojan: 정상적으로 보여지는 악성 코드

DDoS: 트래픽 공격

Malware: 악성코드(malicious software)

BruteForce: 무작위 대입으로 패스워드 탈취

Sql Injection: 쿼리(query) 삽입 공격

Spyware: 사용자를 속이고 설치되는 프로그램

Adware: 광고를 포함한 프로그램

Tor: 익명 인터넷이나 현재는 악의적 목적으로 사용