SOC169 EventID:119 — Possible IDOR Attack Detected — letsdefend.io | allinfosecnews.com

July 25, 2023, 12:53 p.m. | Enes Adışen

System Weakness - Medium systemweakness.com

SOC169 EventID:119 — Possible IDOR Attack Detected — letsdefend.io

Let’s take a look at the provided alert report before starting our analysis.

EventID                :119
Event Time             :Feb, 28, 2022, 10:48 PM
Rule                   :SOC169 - Possible IDOR Attack Detected
Level                  :Security Analyst
Hostname               :WebServer1005
Destination IP Address :172.16.17.15
Source IP Address      :134.209.118.137
HTTP Request Method    :POST
Requested URL          :https://172.16.17.15/get_user_info/
User-Agent             :Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Alert Trigger Reason   :consecutive requests to the same page
Device Action …

blue team letsdefendio soc

More from systemweakness.com / System Weakness - Medium

Protect Yourself from Online Scams: Essential Phishing Email Analysis Techniques. 1 day ago | systemweakness.com

cybersecurity ethical hacking information technology malware +1

Cross-Site Scripting: Understanding, Preventing, and Mitigating Risks 1 day, 14 hours ago | systemweakness.com

continue cross-site cybersecurity data +18

University Linux Course (CTIS166) VS HackTheBox Academy Linux Fundamentals Module 1 day, 14 hours ago | systemweakness.com

bilkent-üniversitesi gnu-linux information technology linux +1

TryHackMe — LDAP Injection — Writeup 1 day, 14 hours ago | systemweakness.com

cybersecurity cybersecurity awareness tryhackme tryhackme-walkthrough +1

Analyzing WSH RAT 1 day, 14 hours ago | systemweakness.com

cyberchef cybersecurity javascript malware analysis +1

The Essential Cybersecurity Mindset 1 day, 14 hours ago | systemweakness.com

age career advice cybersecurity cyber security awareness +20

Secure Architecture: Infrastructure Controls 1 day, 14 hours ago | systemweakness.com

architecture article ask controls +12

Data Breaching in Secure Companies 1 day, 14 hours ago | systemweakness.com

breach business companies continue +12

How Prompt Injection Can Steal Your Data 3 days, 19 hours ago | systemweakness.com

ai chatbots chatgpt cybersecurity +1

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote

View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC

View on infosec-jobs.com