all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SOC170 EventID:120 — Passwd Found in Requested URL — Possible LFI Attack — letsdefend.io

Add to bookmarks
July 28, 2023, 6:41 p.m. | Enes Adışen

System Weakness - Medium systemweakness.com

SOC170 EventID:120 — Passwd Found in Requested URL — Possible LFI Attack — letsdefend.io

Let’s have a look at the provided alert report below.

 
EventID : 120
Event Time             :Mar, 01, 2022, 10:10 AM
Rule                   :SOC170 - Passwd Found in Requested URL - Possible LFI Attack
Level                  :Security Analyst
Hostname               :WebServer1006
Destination IP Address :172.16.17.13
Source IP Address      :106.55.45.162
HTTP Request Method    :GET
Requested URL          :https://172.16.17.13/?file=../../../../etc/passwd
User-Agent             :Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; .NET CLR 1.1.4322)
Alert Trigger Reason …

blue team letsdefendio soc

Visit resource

More from systemweakness.com / System Weakness - Medium

Understanding CSRF Attacks: Safeguarding Your Web Applications 1 day, 10 hours ago | systemweakness.com
applications attacks can compromise +26
Opacity — THM 1 day, 10 hours ago | systemweakness.com
penetration testing pentesting tryhackme tryhackme-walkthrough +1
Learning the basics of authentication with Go and htmx 1 day, 10 hours ago | systemweakness.com
encryption go htmx jwt +1
A Simple Git Misstep That Could Open Doors for Hackers 2 days, 16 hours ago | systemweakness.com
article can commit context +19
Exploring JWT Exploitation Methods 2 days, 16 hours ago | systemweakness.com
account account takeover arm continue +16
Unlocking the Network’s Secrets: A Thrilling Journey into Network Penetration Testing 2 days, 16 hours ago | systemweakness.com
cybersecurity don dream fear +15
NIDPS ⚔️ 2 days, 16 hours ago | systemweakness.com
abnormal administrator alert a network +21
How to Streamline Zombie Account Management? 3 days, 20 hours ago | systemweakness.com
access control access management account build +17
Understanding Cybersecurity Threats: Safeguarding Against Digital Perils 3 days, 21 hours ago | systemweakness.com
article consequences critical cyber +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Senior Associate, Cybersecurity Operations

@ Ares Management Corporation | Los Angeles, CA - CULVER CITY
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Peraton | Fort Gordon, GA, United States
View on infosec-jobs.com

Senior DevSecOps Engineer

@ Diverto | Zagreb, Croatia
View on infosec-jobs.com

Lead DevSecOps Engineer

@ DTCC | Tampa, FL, United States
View on infosec-jobs.com

Incident Responder (Fraud Threat Management)

@ Scotiabank | Toronto, ON, CA, M5H1H1
View on infosec-jobs.com

Penetration Tester, Expert (Federal agency) - Tysons, VA - Full Time

@ iSoftTek Solutions | Tysons, Virginia, United States
View on infosec-jobs.com
View more jobs