Top 25 Attacks
Rule_ID #_of_attacks Description
-----------------------------------------
392301 91631 Atomicorp.com WAF Rules: Request Containing Content, but Missing Content-Type header
5706 20607 SSH insecure connection attempt (scan).
336468 17432 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Google Maps plugin for Joomla probe
171303 8454 Known brute force attacker.
5712 6880 SSHD brute force trying to get access to the system.
393766 6825 Atomicorp.com WAF Rules - Virtual Just In Time Patch: semalt.com bot attempt
5720 5824 Multiple SSHD authentication failures.
60910 5295 Very Slow Wordpress brute force login failures from same IP source.
3357 4910 Multiple rapid SASL authentication failures.
4151 4712 Multiple Firewall drop events from same source.
60159 4615 Wordpress brute force (fast) login failures
5551 3958 Multiple failed logins in a small period of time.
341245 2957 Atomicorp.com WAF Rules: Possible SQL injection attack (detectSQLi)
31102 2568 Possible DoS Consumption Attack
300079 2346 Atomicorp.com WAF AntiSpam Rules: Possible Spam: Multiple embedded urls in argument (Disable if you wish to allow 4 or more URLs in a post)
340162 2040 Atomicorp.com WAF Rules: URL detected as argument, possible RFI attempt detected
3912 1463 Multiple failed logins, 6 failures in 60 seconds from the same IP.
330131 1444 Atomicorp.com WAF Rules: Fake Mozilla User Agent String Detected
5703 1357 Possible breakin attempt (high number of reverse lookup errors).
336461 1350 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Possible attempt to maliciously access wp-config.php file
303800 1135 Atomicorp.com WAF Rules: Fake Googlebot webcrawler
60904 1122 Rapid SMTP password incorrect events from the same IP source.
334009 1102 Atomicorp.com WAF Rules: Potentially Malicious Open Proxy Connection Attempt
11306 1026 FTP brute force (multiple failed logins).
330034 968 Atomicorp.com WAF Rules: Vulnerability Scanner User agent detected
Top 25 Web Attacks
Rule_ID #_of_attacks Description
-----------------------------------------
392301 91631 Atomicorp.com WAF Rules: Request Containing Content, but Missing Content-Type header
336468 17432 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Google Maps plugin for Joomla probe
393766 6825 Atomicorp.com WAF Rules - Virtual Just In Time Patch: semalt.com bot attempt
341245 2957 Atomicorp.com WAF Rules: Possible SQL injection attack (detectSQLi)
300079 2346 Atomicorp.com WAF AntiSpam Rules: Possible Spam: Multiple embedded urls in argument (Disable if you wish to allow 4 or more URLs in a post)
340162 2040 Atomicorp.com WAF Rules: URL detected as argument, possible RFI attempt detected
330131 1444 Atomicorp.com WAF Rules: Fake Mozilla User Agent String Detected
336461 1350 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Possible attempt to maliciously access wp-config.php file
303800 1135 Atomicorp.com WAF Rules: Fake Googlebot webcrawler
334009 1102 Atomicorp.com WAF Rules: Potentially Malicious Open Proxy Connection Attempt
330034 968 Atomicorp.com WAF Rules: Vulnerability Scanner User agent detected
300066 963 Atomicorp.com WAF AntiSpam Rules: Spam: Commercial
340095 859 Atomicorp.com WAF Rules: Possible PHP function in Argument - this may be an attack.
390614 815 Atomicorp.com WAF Rules: Invalid character in ARGS
330082 717 Atomicorp.com WAF Rules: Known Exploit User Agent
336460 638 Atomicorp.com WAF Rules - Virtual Just In Time Patch: Open Flash Charts File Upload Attack
340006 619 Atomicorp.com WAF Rules: Generic Path Recursion denied in URI/ARGS
318811 512 Atomicorp.com WAF Rules: Possible Attempt to Access unauthorized shell or exploit in WP cache directory
330701 494 Atomicorp.com WAF Rules: Potential CVE-2014-6271 Bash Attack
340016 465 Atomicorp.com WAF Rules: Possible SQL injection attempt detected
381203 449 Atomicorp.com WAF Rules - Virtual Just In Time Patch: TimThumb Non Image Upload Attempt
347008 412 Atomicorp.com WAF Rules: Suspicious deep path recursion denied
340165 382 Atomicorp.com WAF Rules: Uniencoded possible Remote File Injection attempt in URI (AE)
340148 368 Atomicorp.com WAF Rules: Potential Cross Site Scripting Attack
351000 340 Atomicorp.com Upload Malware Scanner: Malicious File upload attempt detected and blocked
Top 25 Non-Web Attacks
Rule_ID #_of_attacks Description
-----------------------------------------
5706 20607 SSH insecure connection attempt (scan).
171303 8454 Known brute force attacker.
5712 6880 SSHD brute force trying to get access to the system.
5720 5824 Multiple SSHD authentication failures.
60910 5295 Very Slow Wordpress brute force login failures from same IP source.
3357 4910 Multiple rapid SASL authentication failures.
4151 4712 Multiple Firewall drop events from same source.
60159 4615 Wordpress brute force (fast) login failures
5551 3958 Multiple failed logins in a small period of time.
31102 2568 Possible DoS Consumption Attack
3912 1463 Multiple failed logins, 6 failures in 60 seconds from the same IP.
5703 1357 Possible breakin attempt (high number of reverse lookup errors).
60904 1122 Rapid SMTP password incorrect events from the same IP source.
11306 1026 FTP brute force (multiple failed logins).
11254 813 Multiple attempts to login using a non-existent user..
3356 537 Multiple attempts to send e-mail from black-listed IP address (blocked).
40114 443 Multiple authentication failures. (Slow Brute Force)
60908 418 Very Slow Joomla brute force login failures from same IP source.
40111 385 Multiple authentication failures.
9750 347 Dovecot Multiple Authentication Failures.
3351 324 Multiple relaying attempts of spam.
11255 313 Attempt to log in to a forbidden account.
3913 307 Multiple failed logins, 10 failures in 1 hour from the same IP.
3355 290 Multiple attempts to send e-mail to invalid recipient or from unknown sender domain.
9952 283 Vpopmail brute force (email harvesting).