all InfoSec news
SOC170 EventID:120 — Passwd Found in Requested URL — Possible LFI Attack — letsdefend.io
July 28, 2023, 6:41 p.m. | Enes Adışen
System Weakness - Medium systemweakness.com
SOC170 EventID:120 — Passwd Found in Requested URL — Possible LFI Attack — letsdefend.io
Let’s have a look at the provided alert report below.
EventID : 120
Event Time :Mar, 01, 2022, 10:10 AM
Rule :SOC170 - Passwd Found in Requested URL - Possible LFI Attack
Level :Security Analyst
Hostname :WebServer1006
Destination IP Address :172.16.17.13
Source IP Address :106.55.45.162
HTTP Request Method :GET
Requested URL :https://172.16.17.13/?file=../../../../etc/passwd
User-Agent :Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Alert Trigger Reason …
More from systemweakness.com / System Weakness - Medium
Analyzing WSH RAT
1 day, 15 hours ago |
systemweakness.com
The Essential Cybersecurity Mindset
1 day, 15 hours ago |
systemweakness.com
Secure Architecture: Infrastructure Controls
1 day, 15 hours ago |
systemweakness.com
Data Breaching in Secure Companies
1 day, 15 hours ago |
systemweakness.com
How Prompt Injection Can Steal Your Data
3 days, 20 hours ago |
systemweakness.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Security Compliance Strategist
@ Grab | Petaling Jaya, Malaysia
Cloud Security Architect, Lead
@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)