Top 25 Attacks (level 6+)
Rule_ID Count
-----------------------------------------
392301 30019 Atomicorp.com WAF Rules: Request Containing Content, but Missing Content-Type header
5706 21425 SSH insecure connection attempt (scan).
336468 17600 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Google Maps plugin for Joomla probe
393766 11333 Atomicorp.com WAF Rules - Virtual Just In Time Patch: semalt.com bot attempt
171303 7977 Known brute force attacker.
5712 7599 SSHD brute force trying to get access to the system.
3357 6730 Multiple rapid SASL authentication failures.
60910 5594 Very Slow Wordpress brute force login failures from same IP source.
5720 4890 Multiple SSHD authentication failures.
60159 4738 Wordpress brute force (fast) login failures
4151 4309 Multiple Firewall drop events from same source.
31102 3800 Possible DoS Consumption Attack
5551 3125 Multiple failed logins in a small period of time.
340162 2742 Atomicorp.com WAF Rules: URL detected as argument, possible RFI attempt detected
334009 2424 Atomicorp.com WAF Rules: Potentially Malicious Open Proxy Connection Attempt
336461 2346 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Possible attempt to maliciously access wp-config.php file
300079 2296 Atomicorp.com WAF AntiSpam Rules: Possible Spam: Multiple embedded urls in argument (Disable if you wish to allow 4 or more URLs in a post)
330082 1803 Atomicorp.com WAF Rules: Known Exploit User Agent
330131 1782 Atomicorp.com WAF Rules: Fake Mozilla User Agent String Detected
3912 1621 Multiple failed logins, 6 failures in 60 seconds from the same IP.
60904 1469 Rapid SMTP password incorrect events from the same IP source.
5703 1423 Possible breakin attempt (high number of reverse lookup errors).
340095 1395 Atomicorp.com WAF Rules: Possible PHP function in Argument - this may be an attack.
300066 976 Atomicorp.com WAF AntiSpam Rules: Spam: Commercial
330034 965 Atomicorp.com WAF Rules: Vulnerability Scanner User agent detected
Top 25 Web Attacks
Rule_ID Count
-----------------------------------------
392301 30019 Atomicorp.com WAF Rules: Request Containing Content, but Missing Content-Type header
336468 17600 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Google Maps plugin for Joomla probe
393766 11333 Atomicorp.com WAF Rules - Virtual Just In Time Patch: semalt.com bot attempt
340162 2742 Atomicorp.com WAF Rules: URL detected as argument, possible RFI attempt detected
334009 2424 Atomicorp.com WAF Rules: Potentially Malicious Open Proxy Connection Attempt
336461 2346 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Possible attempt to maliciously access wp-config.php file
300079 2296 Atomicorp.com WAF AntiSpam Rules: Possible Spam: Multiple embedded urls in argument (Disable if you wish to allow 4 or more URLs in a post)
330082 1803 Atomicorp.com WAF Rules: Known Exploit User Agent
330131 1782 Atomicorp.com WAF Rules: Fake Mozilla User Agent String Detected
340095 1395 Atomicorp.com WAF Rules: Possible PHP function in Argument - this may be an attack.
300066 976 Atomicorp.com WAF AntiSpam Rules: Spam: Commercial
330034 965 Atomicorp.com WAF Rules: Vulnerability Scanner User agent detected
336460 963 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Open Flash Charts File Upload Attack
390614 939 Atomicorp.com WAF Rules: Invalid character in ARGS
340361 922 Atomicorp.com WAF Rules: CONNECT method denied
303800 765 Atomicorp.com WAF Rules: Fake Googlebot webcrawler
340006 758 Atomicorp.com WAF Rules: Generic Path Recursion denied in URI/ARGS
341245 631 Atomicorp.com WAF Rules: Possible SQL injection attack (detectSQLi)
347008 629 Atomicorp.com WAF Rules: Suspicious deep path recursion denied
318811 456 Atomicorp.com WAF Rules: Possible Attempt to Access unauthorized shell or exploit in WP cache directory
351000 448 Atomicorp.com Upload Malware Scanner: Malicious File upload attempt detected and blocked
340165 406 Atomicorp.com WAF Rules: Uniencoded possible Remote File Injection attempt in URI (AE)
340148 354 Atomicorp.com WAF Rules: Potential Cross Site Scripting Attack
330205 351 Atomicorp.com WAF Rules: Joomla Exploit Bot
340016 346 Atomicorp.com WAF Rules: Possible SQL injection attempt detected
Top 25 Non-Web Attacks
Rule_ID Count
-----------------------------------------
5706 21425 SSH insecure connection attempt (scan).
171303 7977 Known brute force attacker.
5712 7599 SSHD brute force trying to get access to the system.
3357 6730 Multiple rapid SASL authentication failures.
60910 5594 Very Slow Wordpress brute force login failures from same IP source.
5720 4890 Multiple SSHD authentication failures.
60159 4738 Wordpress brute force (fast) login failures
4151 4309 Multiple Firewall drop events from same source.
31102 3800 Possible DoS Consumption Attack
5551 3125 Multiple failed logins in a small period of time.
3912 1621 Multiple failed logins, 6 failures in 60 seconds from the same IP.
60904 1469 Rapid SMTP password incorrect events from the same IP source.
5703 1423 Possible breakin attempt (high number of reverse lookup errors).
11306 953 FTP brute force (multiple failed logins).
11254 662 Multiple attempts to login using a non-existent user..
3356 617 Multiple attempts to send e-mail from black-listed IP address (blocked).
60908 564 Very Slow Joomla brute force login failures from same IP source.
3153 462 Multiple relaying attempts of spam.
3353 447 Multiple attempts to send e-mail from invalid/unknown sender domain.
3913 443 Multiple failed logins, 10 failures in 1 hour from the same IP.
40114 376 Multiple authentication failures. (Slow Brute Force)
9750 370 Dovecot Multiple Authentication Failures.
40111 347 Multiple authentication failures.
60156 295 Joomla brute force (fast) login failures
3355 284 Multiple attempts to send e-mail to invalid recipient or from unknown sender domain.