Grabit Analysis

Activities

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

Lang

en	727
de	103
zh	77
fr	26
es	25

Country

us	554
cn	158
de	84
gb	61
es	14

Actors

APT-C-36	6
Grabit	6
FritzFrog	1

Activities

Interest

Timeline

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Type

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vendor

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Product

The data in this chart does not reflect real data. It is dummy data, distorted and not usable in any way. You need you unlock this view to get access to more details of real data.

Vulnerabilities

#	Vulnerability	Base	Temp	0day	Today	Exp	Rem	CTI	CVE
1	Microsoft ASP.NET Core Kestrel Web Application password recovery	8.0	7.7	$25k-$100k	$0-$5k	Not Defined	Official Fix	0.06	CVE-2018-0787
2	Thomas R. Pasawicz HyperBook Guestbook Password Database gbconfiguration.dat Hash information disclosure	5.3	5.2	$5k-$25k	$0-$5k	High	Workaround	0.05	CVE-2007-1192
3	DZCP deV!L`z Clanportal config.php code injection	7.3	6.6	$0-$5k	$0-$5k	Proof-of-Concept	Official Fix	0.29	CVE-2010-0966
4	nginx request smuggling	6.9	6.9	$0-$5k	$0-$5k	Not Defined	Not Defined	1.97	CVE-2020-12440
5	IBM WebSphere Portal cross site scripting	5.2	4.9	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.06	CVE-2016-0243
6	Linksys WVC11B main.cgi cross site scriting	4.3	4.3	$0-$5k	$0-$5k	Not Defined	Not Defined	0.03	CVE-2004-2508
7	Microsoft IIS cross site scripting	5.2	4.7	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	1.00	CVE-2017-0055
8	Logaritmo Logaritmo Aware CallManager File Upload procesa_carga.php unrestricted upload	7.5	7.5	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2019-20385
9	Linux Foundation Xen EFLAGS Register SYSENTER input validation	6.2	5.9	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.05	CVE-2013-1917
10	VMware Spring Cloud Function SpEL Expression code injection	9.8	9.3	$5k-$25k	$0-$5k	Proof-of-Concept	Official Fix	1.90	CVE-2022-22963
11	WordPress sql injection	6.8	6.7	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.61	CVE-2022-21664
12	ActionApps item_content.php3 code injection	6.5	6.2	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.13	CVE-2006-2686
13	Basti2web Book Panel books.php sql injection	7.3	7.0	$0-$5k	$0-$5k	High	Official Fix	0.10	CVE-2009-4889
14	PHP php URL error_log access control	6.5	5.9	$25k-$100k	$0-$5k	Proof-of-Concept	Official Fix	0.05	CVE-2006-3011
15	Splunk Enterprise Web Impersonation access control	8.5	8.2	$0-$5k	$0-$5k	Not Defined	Official Fix	0.04	CVE-2017-17067
16	Microsoft ClickToRun Remote Code Execution	7.3	6.7	$5k-$25k	$5k-$25k	Unproven	Official Fix	0.04	CVE-2022-22004
17	Cisco Linksys apply.cgi cross-site request forgery	7.7	7.3	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.03	CVE-2013-2678
18	D-Link DIR-300/DIR-600/DIR-645/DIR-845/DIR-865 command injection	8.5	8.2	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.08	CVE-2013-7471
19	Issabel PBX Create New Rate cross site scripting	3.5	3.5	$0-$5k	$0-$5k	Not Defined	Official Fix	0.03	CVE-2021-34190
20	All Enthusiast Inc ReviewPost PHP Pro index.php file inclusion	7.3	6.4	$0-$5k	$0-$5k	Proof-of-Concept	Unavailable	0.04	CVE-2006-4864

IOC - Indicator of Compromise (8)

These indicators of compromise highlight associated network ressources which are known to be part of research and attack activities.

ID	IP address	Hostname	Actor	Confidence
1	31.170.163.242	mx1.main-hosting.com	Grabit	High
2	31.170.164.81		Grabit	High
3	XX.XXX.XX.XXX		Xxxxxx	High
4	XXX.XX.XX.XX	xxxxxxxxx.xxxxxxxx.xxxxxxxxx	Xxxxxx	High
5	XXX.XX.XX.XX		Xxxxxx	High
6	XXX.XX.XX.XX		Xxxxxx	High
7	XXX.XX.XXX.XX		Xxxxxx	High
8	XXX.X.XXX.XXX		Xxxxxx	High

TTP - Tactics, Techniques, Procedures (10)

Tactics, techniques, and procedures summarize the suspected MITRE ATT&CK techniques used. This data is unique as it uses our predictive model for actor profiling.

ID	Technique	Vulnerabilities	Access Vector	Confidence
1	T1059.007	CWE-79, CWE-80	Cross Site Scripting	High
2	T1068	CWE-264, CWE-284	Execution with Unnecessary Privileges	High
3	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxxxxxxx Xx Xxxxxxxxx Xxxxxxxxxxxxxx Xxxxxxxx	High
4	TXXXX	CWE-XXX	7xx Xxxxxxxx Xxxxxxxx	High
5	TXXXX	CWE-XXX	Xxxxxxxxxx Xxxxxx	High
6	TXXXX.XXX	CWE-XXX	Xxxxxxxx Xxxxxxxxxxxxx	High
7	TXXXX	CWE-XXX	Xxxxxxxxxxx Xxxxxxx Xx Xxxxxxxxxxx	High
8	TXXXX	CWE-XXX	Xxxxxxx Xxxxxxxxxx Xx Xxx-xxxxxxxx	High
9	TXXXX.XXX	CWE-XXX, CWE-XXX	Xxxxxxxx Xxxxxxxxxxx Xxxxxxxxxx	High
10	TXXXX	CWE-XXX	Xxxxxxxxxxxxx Xxxxxx	High

IOA - Indicator of Attack (458)

These indicators of attack list the potential fragments used for technical activities like reconnaissance, exploitation, privilege escalation, and exfiltration. This data is unique as it uses our predictive model for actor profiling.

ID	Class	Indicator	Confidence
1	File	$SPLUNK_HOME/etc/splunk-launch.conf	High
2	File	/+CSCOE+/logon.html	High
3	File	/assets/ctx	Medium
4	File	/bsms/?page=products	High
5	File	/cloud_config/router_post/check_reg_verify_code	High
6	File	/concat?/%2557EB-INF/web.xml	High
7	File	/config/getuser	High
8	File	/debug/pprof	Medium
9	File	/ext/phar/phar_object.c	High
10	File	/filemanager/php/connector.php	High
11	File	/get_getnetworkconf.cgi	High
12	File	/HNAP1	Low
13	File	/include/chart_generator.php	High
14	File	/index.php?controller=calendar&format=raw&cat[0]=SQLi&task=events	High
15	File	/Main_Login.asp?flag=1&productname=RT-AC88U&url=/downloadmaster/task.asp	High
16	File	/modx/manager/index.php	High
17	File	/osm/REGISTER.cmd	High
18	File	/product_list.php	High
19	File	/replication	Medium
20	File	/siteminderagent/pwcgi/smpwservicescgi.exe	High
21	File	/supervisor/procesa_carga.php	High
22	File	/type.php	Medium
23	File	/uncpath/	Medium
24	File	/usr/bin/pkexec	High
25	File	/zm/index.php	High
26	File	4.2.0.CP09	Medium
27	File	14all.cgi/14all-1.1.cgi/traffic.cgi/mrtg.cgi	High
28	File	802dot1xclientcert.cgi	High
29	File	add.exe	Low
30	File	addentry.php	Medium
31	File	admin-ajax.php	High
32	File	admin.color.php	High
33	File	admin.cropcanvas.php	High
34	File	admin.joomlaradiov5.php	High
35	File	admin.php	Medium
36	File	admin.php?m=Food&a=addsave	High
37	File	admin/conf_users_edit.php	High
38	File	admin/index.php	High
39	File	admin/user.php	High
40	File	admin/write-post.php	High
41	File	administrator/components/com_media/helpers/media.php	High
42	File	admin_events.php	High
43	File	ajax_new_account.php	High
44	File	akocomments.php	High
45	File	allopass-error.php	High
46	File	announcement.php	High
47	File	apply.cgi	Medium
48	File	archiver\index.php	High
49	File	artlinks.dispnew.php	High
50	File	auth-gss2.c	Medium
51	File	auth.inc.php	Medium
52	File	authorization.do	High
53	File	awstats.pl	Medium
54	File	backoffice/login.asp	High
55	File	bb_usage_stats.php	High
56	File	binder.c	Medium
57	File	books.php	Medium
58	File	C:\Python27	Medium
59	File	C:\Windows\System32\config\SAM	High
60	File	xxxxxxxxx.xxxx	High
61	File	xxxxxxxx.xxx	Medium
62	File	xxxxxxxx.xxx	Medium
63	File	xxxxxxxx_xxxx.xxx	High
64	File	xxx.xxx	Low
65	File	xxxx_xxxxxxxx/xx.xxx	High
66	File	xxx/xxxxxxxxx/xxxxxx/xxxxxxxxxxxxx.xxxx	High
67	File	xxxxxxxx_xxxxxxxxxxxxxxxxxxxxxxxxxxxx.xxx	High
68	File	xxxxxxxx_xxxxxxxxxxxxxxxxx.xxx	High
69	File	xxxxxx.xxx.xxx	High
70	File	xxxxxxxxxx/xxx/xxxxxxxxx.xxx	High
71	File	xxxxxxxxx.xxx	High
72	File	xxxxxxx.xxx	Medium
73	File	xxxxxxx/xx_xxxxxxxxxxxxx	High
74	File	xxxxxxxxx.xxx	High
75	File	xxxxxxxx.xxxx/xxxxxxxx.xxxxxx.xxxx.xxx	High
76	File	xxxxxxxx.xxxx/xxxxxxxx.xxxxxx.xxxxxx.xxx	High
77	File	xxxx/xxxxxxxxxxxxxxx.xxx	High
78	File	xxxxxxxxx/xx_xxxxx.xxxxx.xxx	High
79	File	xxxxxxx.xxx	Medium
80	File	xxxxxxx.xxx	Medium
81	File	xxxxxxx.xxx	Medium
82	File	xxxxxx.xxx	Medium
83	File	xxxxxxx.xxx	Medium
84	File	xxxxxxxxx.xxx	High
85	File	xxx_xxxxx.xxx	High
86	File	xxxxxxx.xxx	Medium
87	File	xxxxxxxx.xxx	Medium
88	File	xxxxxxxx/xxxxx.xxx	High
89	File	xxxxxxx/xxx/xxx-xxx.x	High
90	File	xxxxxxx/xxx/xxx/xxxx_xxx.x	High
91	File	xxxx.xxx	Medium
92	File	xx_xxxxx.xxx	Medium
93	File	xxx/xxxxx_xxx.xxx	High
94	File	xxx/xxxx/xxxx.x	High
95	File	xxx/xxxxxxxx/xxxx_xxxxx_xxxxxxx.x	High
96	File	xxxxxxxx-xxxx.xxxx	High
97	File	xxxxxxxxxxx.xxxxx.xxx	High
98	File	xxxxx.xx	Medium
99	File	xxxxxxxx.xxx	Medium
100	File	xxxxxx.x	Medium
101	File	xxxxxx.xxx	Medium
102	File	xxxxx.xxx	Medium
103	File	xxxxxxxxx.xxx	High
104	File	xxx.xxx	Low
105	File	xxxxxxxxxx.xxx	High
106	File	xxxxxxx/xxxxxxxxxxxxxx	High
107	File	xxxxxxxxxxxx.xxx/xxxx_xxxxxxxxx_xxxxx.xxxx/xxxxxx.xxxx	High
108	File	xxxx.xxx	Medium
109	File	xxxxxx.xxx	Medium
110	File	xxxxxx.xxxx/xxxxxx.xxxx	High
111	File	xxxx.xxx.xxx	Medium
112	File	xxxx_xxxx_xxxx.xxx	High
113	File	xxxxxxxx.xxx	Medium
114	File	xxxxxx.xxx	Medium
115	File	xxxx/xxxxxxxxxxxxxxxxxxxxxxxx.xx	High
116	File	xxxxxxxxxxxx.xxx	High
117	File	xxxxxx-xxxx.xxx	High
118	File	xxxxxx_xxx_xxxx_xxxxx_xx_xxxxx.x	High
119	File	xxxxx_xxxxxx.xxx	High
120	File	xxxxxxxxx.xxx	High
121	File	xxx/xxxxxx.xxx	High
122	File	xxx/xxxxxxxxxxx/xxxxxxx.xxx	High
123	File	xxxxxxx.xxx	Medium
124	File	xxxxxxx/xxxxxxxxx.xxx.xxx	High
125	File	xxxxx.xxx	Medium
126	File	xxxxx.xxxx	Medium
127	File	xxxxx.xxx	Medium
128	File	xxxxx.xxx?x=xxxx&x=xxxxxxx&x=xxx	High
129	File	xxxxx.xxx?xxxx=xxxxxxx_xxxxx	High
130	File	xxxx.xxx.xxx	Medium
131	File	xxxxxxx/xxxxxx-xxxxx.xxx	High
132	File	xxxxxxx_xx.xxx	High
133	File	xxxxxx/xxxxx/	High
134	File	xxxxxx/xxxxxx/xxxxx.xxx	High
135	File	xxxxxx/xxxxxx/xxx_x.xxx	High
136	File	xxxx_xxxxxxx.xxxx	High
137	File	xxx.xxx	Low
138	File	xxxxx/xxxxx.xxx	High
139	File	xxxxxxx_xxxxxxx/xxxx.xxx	High
140	File	xxxxxx/xxxxxx.x	High
141	File	xxxxxx/xxxxx/xxxxx_xxxxxx_xxxxxx.x	High
142	File	xxxxxxxxx/xxxxxxx/xxxxxxxxxxx/xxxxx/xxxxxxxxxxxxxxxxxxxxx.xxx	High
143	File	xxxxxxx/xxxxx/xx/xxxxxx.xxxxx.xxx	High
144	File	xxxxxxxxxx_xxxxxxx.xxx	High
145	File	xxxxxxx.xxx	Medium
146	File	xxxx/xxxxxxxxxx/xxxxxxxxxxxxxxxxx/xxxxxx_xxxx_xx_xxx?xxx_xxx	High
147	File	xxxxx.xxxx	Medium
148	File	xxxxx_xx.xxxx	High
149	File	xx.xxx	Low
150	File	xxx_xxxxxxxx.xxx	High
151	File	xxxxxx/xxxxxxx/xxxxxx_xxxxxxxx.xxx	High
152	File	xxxx.xxx	Medium
153	File	xxxxxx/xxxxxx/xxx.xxxx	High
154	File	xxxxxx/xxxxxx_xxxx.xxx	High
155	File	xxxx.xxx	Medium
156	File	xxxxxx/xxxxxxxx.xxx	High
157	File	xxx_xxxxx.x	Medium
158	File	xxx_xxxxx_xxxxx.x	High
159	File	xx.xxxxxxxxxx.xxxx	High
160	File	xxxxxx.xxx/xxxxxxxx.xxx/xxxxxxxx.xxx/xxxxxxxx.xx/xxxxxxx.xx/xxxxxx.xx/xxxx.xxx/xxx.xx	High
161	File	xxx/xxx/xx_xxx.x	High
162	File	xxx/xxxxxxxxx/xx_xxx_xxxxxx.x	High
163	File	xxx/xxxxxx/xx_xxxxxx.x	High
164	File	xxxx.xxx	Medium
165	File	xxxxxxxx.xxx	Medium
166	File	xxxxxxxxxx.xxx	High
167	File	xxx_xxxxx_xxxxxxxxxx_xxxxxx/xxxxx/xxxxxxx	High
168	File	xxx_xxxxxxx.x	High
169	File	xxxxxxxxxxxx.xxx	High
170	File	xxxxxxxx/xxxxxx-xxxxx/xxxxxxxxxxx/xxxx.xx	High
171	File	xxxxxxxxxxxxxx.xxx	High
172	File	xxxxxxxxxxxx/xxxxxxxxxxxx.xxx	High
173	File	xxx/xxxxx.xxx	High
174	File	xxxxxx/xxxxxxxxxxx/xxxxxx/xxxxxx.xx	High
175	File	xxxxx-xxxx.x	Medium
176	File	xxxxx.xxx	Medium
177	File	xxxxxxxxxxxxxx.xxx	High
178	File	xxxxxxxx.xxx	Medium
179	File	xxxxxxx_xxxxxxx.xxx	High
180	File	xxxxxxxx/xxxx.xxx	High
181	File	xxxxxxxxxxxxxxxxxxxxxxxxxxx!xxxxxxx.xxxx	High
182	File	xxxx/xxxxx.xxx	High
183	File	xxxxx.xxx	Medium
184	File	xxxxxxxx.xxx	Medium
185	File	xxxxxxxx/xxxxx/xxxxxxxx?xxxxxxxx	High
186	File	xxxxxxxx_xxxx.xxx	High
187	File	xxxxxxxxxxxx_xxxxxxxx.xxx.xxx	High
188	File	xxxxx.xxx	Medium
189	File	xxxxxxxxxxxxxxx.xxxx	High
190	File	xxxxxxxxxx.xxxx.xxx	High
191	File	xxx.xxxxx/xxxxxxx/xxxxxx_xxxxx.xxx	High
192	File	xxxxxxxxxx.xxxx	High
193	File	xxxx-xxxxxxx.x	High
194	File	xxxxxx.xxx	Medium
195	File	xxxxxxxxxxxx.xxx	High
196	File	xxxxxxxxxxxxxxxxxx.xxx	High
197	File	xxxxx/xxxxx.xxx	High
198	File	xxxx-xxxxxx.x	High
199	File	xxxx.xxx	Medium
200	File	xxxx.xxx	Medium
201	File	xxxxxxxxxxxx.xxx	High
202	File	xxxxxxxxxxxxxx.xxx	High
203	File	xxxxxxxx.xxx	Medium
204	File	xxxx.xxx	Medium
205	File	xxxxxxx.xxx	Medium
206	File	xxxx_xxxx_xxx.xxx	High
207	File	xxxxxxxx/xxxxxxxx/xxxx/xxxxxx/..%xx	High
208	File	xxxxxx_xxxx.xxx	High
209	File	xxxxx/xxxxxxxx/xxxxxxxxx.xxx	High
210	File	xxxxx.xxx	Medium
211	File	xxxx.xxx?xxxxxxx=xxxxxxxxxx	High
212	File	xxxxxxxx-xxxxxxxxxxx.xxx	High
213	File	xxx/xxxxxxxxxx.x	High
214	File	xxxxxxxxxxx.x	High
215	File	xxxxx_xxxxx.xxx	High
216	File	xxxxxxxxxxxxxxxx.xxx	High
217	File	xxxxxxxxx.xxx	High
218	File	xxxxxx.xxx	Medium
219	File	xxxxxx/xxxxxxxx/xxxxxx.xxx	High
220	File	xxxx-xxxxxxx.xxx	High
221	File	xxxxxxx-xxxxxxxx.xxx	High
222	File	xxxxxx/xxxx/xxxxxxx/xxxx/xxxxxxxxxxxxxxxxxxxxxxxx.xxx	High
223	File	xxxxxx/xxxxxxx/xxxxx/xxx/xxxxxxxx.xxx	High
224	File	xxxxxxxxxxx%\xx\xx.xxx	High
225	File	xxxxxxxxxxxxxx.xxx	High
226	File	xxxxxxxx.xxxxx.xxx	High
227	File	xxxxxxx/xxxxx.xxx	High
228	File	xxx-xxxxxxx.x	High
229	File	xxxxx.xxx	Medium
230	File	xxxxxxxx.xxx	Medium
231	File	xx_xxxxx.xxxx	High
232	File	xx_xxxx.xxxx	Medium
233	File	xxxxxxx.xxx/xxxxxxx.xxxxxxxxxxxx/xxxxxxx/xxxxxxx/xxxxxxxxxxxxxxxxxx.xxxx.xx	High
234	File	xxxxxx.xxx	Medium
235	File	xxxxxxxxx.xxx?xxx	High
236	File	xxxx.xxx	Medium
237	File	xxxxxxx/xxxxxxxxxxxxxxxxxxxx.xxx	High
238	File	xxxx/xxxxxxxx/xxxxxxxx.xxxx	High
239	File	xxxx.xxx	Medium
240	File	xxxxx/xxxxx.xx	High
241	File	xxxxxxxxxxx.xxx	High
242	File	xxxxxx/xxxxx/xxxx_xxx.xxx	High
243	File	xxxxxxxx.xxxx.xxx	High
244	File	xx-xxxxx/xxxxx-xxxx.xxx	High
245	File	xx-xxxxx/xxxxx.xxx?xxxx=xxxxxxxxx_xxxxxxxx_xxxxxxx&xxx=xxxxxxxx_xxxxx	High
246	File	xx-xxxxx/xxxx-xxx-xxxx.xxx	High
247	File	xx-xxxxxxxx/xxxxx-xx-xxxxxx-xxxxxx.xxx	High
248	File	xx-xxxxx.xxx	Medium
249	File	xxxx.xx	Low
250	File	xxxxxxxxxxx.xxx	High
251	File	xx_xxxxxx/xxx.xxx	High
252	File	xxxx/xxxx_xxxxxx.x	High
253	File	xxxxxxxxxxxx.xxx	High
254	File	_xxxxxx/xxxxxxxx.x	High
255	File	_xxxxxxxx/xxxxxxxx.xx	High
256	File	~/xxxxxx-xxxxx-xxxxxxxxxx.xxx	High
257	File	~/xxxx-xxxxxxxxxxx.xxx	High
258	Library	/xxx/xxx/xxxx.xxx	High
259	Library	xxxxx/xxx-xxxxxxxxxxx.xxx.xxx	High
260	Library	xxxxxx[xxxxxx_xxxx	High
261	Library	xxxxxx_xxx[xxx_xxx	High
262	Library	xxxxxxxxxxxx.xxx	High
263	Library	xxxxxxx.xxx	Medium
264	Library	xxxxxxxxxxxxxx	High
265	Library	xxxxxxxxx	Medium
266	Library	xxxxxxxxx/xxx-xxxxxx/xxxxxxxx.xxx	High
267	Library	xxxxxxxxxxx.xxx	High
268	Library	xxxxxxxx_xxx	Medium
269	Library	xxxxx.xxx	Medium
270	Library	xxxxxxx.xxx	Medium
271	Argument	$xxxx	Low
272	Argument	$_xxxxxx['xxx_xxxx']	High
273	Argument	xxxxxxx	Low
274	Argument	xxxxxx	Low
275	Argument	xxxxxxx	Low
276	Argument	xxxxxxx	Low
277	Argument	xxxxxxx	Low
278	Argument	xxxxxx/xxxxx=xxx:x=xxxxx	High
279	Argument	xxxxxxxx	Medium
280	Argument	xxxx_xxx	Medium
281	Argument	xxxxx	Low
282	Argument	xxxxxx	Low
283	Argument	xxxx	Low
284	Argument	xxx	Low
285	Argument	xxxxxxxxx	Medium
286	Argument	xxxxxxxx	Medium
287	Argument	xxxxx	Low
288	Argument	xxx_xx	Low
289	Argument	xxx	Low
290	Argument	xxx	Low
291	Argument	xxxxxx-xxxx	Medium
292	Argument	xxxx	Low
293	Argument	xxxxxxxxxx	Medium
294	Argument	xxxxxx[xxxxxx_xxxx]	High
295	Argument	xxxxxx_xxx[xxx_xxx]	High
296	Argument	xxxxxx	Low
297	Argument	xxx_x_xxx	Medium
298	Argument	xx_xx_xxxx_xxxx	High
299	Argument	xxxxxxxxxxxx	Medium
300	Argument	xxxxxxxxxxxxx	High
301	Argument	x_xxxxxx.xxxx_xxxxx	High
302	Argument	xxxxxxxx_xxxx	High
303	Argument	xxxxxxxxxxx/xxxx/xxxxxxx	High
304	Argument	xxxx	Low
305	Argument	xxxxxx	Low
306	Argument	xxxxxx	Low
307	Argument	xxxxx	Low
308	Argument	xx_xxxxx_xx	Medium
309	Argument	xxxxx	Low
310	Argument	xx_xxxxxxx	Medium
311	Argument	xxx	Low
312	Argument	xxxx	Low
313	Argument	xxxxxxxx	Medium
314	Argument	xxxxx_xxx	Medium
315	Argument	xxxxx	Low
316	Argument	xxxxxxxxxxxxxxxxxxx	High
317	Argument	xxxxxxxxxxxxx	High
318	Argument	xxxxxxx_xx/xxx/xxxxx_xx/_xx	High
319	Argument	xxxxxx	Low
320	Argument	xxxxxxx[xx_xxx_xxxx]	High
321	Argument	xx	Low
322	Argument	xxxxxxxx	Medium
323	Argument	xxxx/xxxx	Medium
324	Argument	xxxxxxxx	Medium
325	Argument	xx	Low
326	Argument	xxxxx	Low
327	Argument	xxxxxx	Low
328	Argument	xxxxx	Low
329	Argument	xxxxxxxxx	Medium
330	Argument	xx	Low
331	Argument	xxxxxxxxx	Medium
332	Argument	xxxxx	Low
333	Argument	xx	Low
334	Argument	xxxxxxxxx	Medium
335	Argument	xxxx xxxxxxx	Medium
336	Argument	xxxxxx	Low
337	Argument	x_xxxxxxxx	Medium
338	Argument	xxx	Low
339	Argument	xxxxx	Low
340	Argument	xxxx	Low
341	Argument	xxxxxx	Low
342	Argument	xxx	Low
343	Argument	xxxxxx_xx	Medium
344	Argument	xxxxx_xxxx	Medium
345	Argument	xxx_xxxxxxx_xxx	High
346	Argument	xxx_xxxx_xxxx	High
347	Argument	xxxxxx	Low
348	Argument	xxxxxxxxx/xxxxxxxxx	High
349	Argument	xxxxxx	Low
350	Argument	xxxxxx_xxxxx	Medium
351	Argument	xxxxxxxxx_xxxxxxxx_xxxx	High
352	Argument	xxxxxxxxx_xxxx_xxxx	High
353	Argument	xx_xxxxxx/xx_xxxxxx	High
354	Argument	xxxx	Low
355	Argument	xxxx/xxxxxx	Medium
356	Argument	xxxx[]	Low
357	Argument	xxxxxxxxxxxxxxxxx/xxxxxxxxxxxxxxx/xxxxxxxxxxxxxxx	High
358	Argument	xxxxxxxxxx	Medium
359	Argument	xxxxxxxx	Medium
360	Argument	xxxx_xxxx	Medium
361	Argument	xx	Low
362	Argument	xxxxx	Low
363	Argument	xx	Low
364	Argument	xxxxxx	Low
365	Argument	xxxxxxx	Low
366	Argument	xxxxx	Low
367	Argument	xxxx	Low
368	Argument	xxxxxx/xxxxx/xxxxx	High
369	Argument	xxxx_xx	Low
370	Argument	xxxxx	Low
371	Argument	xxxxxxxx	Medium
372	Argument	xxxx_xxxxx	Medium
373	Argument	xxxx_xx_xxxxxx	High
374	Argument	xxx_xxxx_xxxxxxxxx	High
375	Argument	xxxxxx_xxxx	Medium
376	Argument	xxxxx_xxxx_xxxx	High
377	Argument	xxxxx_xxxxxxx_xxxx	High
378	Argument	xxx_xxxx	Medium
379	Argument	xxx	Low
380	Argument	xxxxxxxxxx	Medium
381	Argument	xxxxxxxxxx[x]	High
382	Argument	xxxx_xxxx_xx	Medium
383	Argument	xxxxx	Low
384	Argument	xxxxxx	Low
385	Argument	xxxxxx	Low
386	Argument	xx_xxxx	Low
387	Argument	xxxxxx	Low
388	Argument	xxxxxx	Low
389	Argument	xxxxxxxxx	Medium
390	Argument	xxxxxxxxxxx	Medium
391	Argument	xxxxxxx_xx	Medium
392	Argument	xxxxxxxxxxxxxxx	High
393	Argument	xxx	Low
394	Argument	xxxxxxxx	Medium
395	Argument	xxxxxxxx	Medium
396	Argument	xxxxxxx	Low
397	Argument	xxxxxxxx	Medium
398	Argument	xxxxxxx	Low
399	Argument	xx_xxxx	Low
400	Argument	xxx_xxx	Low
401	Argument	xxxxx_xx	Medium
402	Argument	xxx	Low
403	Argument	xxxxxx	Low
404	Argument	xxxxxx/xxxxxx_xxxxxx	High
405	Argument	xxxxxx	Low
406	Argument	xxxxxx_xx	Medium
407	Argument	xxxxxxxxxxx	Medium
408	Argument	xxxxxxx_xx	Medium
409	Argument	xxx_xxxxx	Medium
410	Argument	xxxx	Low
411	Argument	xxxxxx	Low
412	Argument	xxxx	Low
413	Argument	xxxxxxxxxxxxxx	High
414	Argument	xxxxxxxx	Medium
415	Argument	xxxxxxxx	Medium
416	Argument	xxxxx	Low
417	Argument	xxxxxxxx_xxx	Medium
418	Argument	xxxxxxxxxx	Medium
419	Argument	x:xxxxxxxx	Medium
420	Argument	xxxxx_xxxxxx	Medium
421	Argument	xxxxxx	Low
422	Argument	xxxxxxxx	Medium
423	Argument	xxxxx	Low
424	Argument	xxxxx	Low
425	Argument	xxxxxx	Low
426	Argument	xxx_xxx_xxxxxx	High
427	Argument	xxxx_xxxxxx[xxxxxxx]	High
428	Argument	xxxx	Low
429	Argument	xx_xxxx_xxxxxxx_xxxxxxxx	High
430	Argument	xxx	Low
431	Argument	xxx	Low
432	Argument	xxx_xxxxxxx	Medium
433	Argument	xxx_xxx	Low
434	Argument	xxxxxxx	Low
435	Argument	xxxxxxxx	Medium
436	Argument	xxxxxxxx/xxxx	High
437	Argument	xxxxxxxx/xxxxxxxx	High
438	Argument	xxxxx[_xxxxxxxx]	High
439	Argument	xxxx/xxxx	Medium
440	Argument	xxxx	Low
441	Argument	xxxxx_xxx	Medium
442	Argument	xx	Low
443	Argument	\xxxxxx\	Medium
444	Argument	_xxxx[_xxx_xxxx_xxxx	High
445	Argument	_xxxx[_xxx_xxxx_xxxx]	High
446	Argument	_xxxxxxx_xxxx	High
447	Argument	_xxxxx	Low
448	Argument	_x	Low
449	Input Value	../	Low
450	Input Value	xx' xxx xxx_xxxx.xxxxxxx('xxxx://xxxxxxxxx_xxxx/xxxxx')='x' xxxxx xx xxxxx_xxxx)) --	High
451	Input Value	xxxxxxxxxxxxxxxxxxxxxxxxxxxx+xxxxx+xxxxxx+x,x,xxxx,xxx,x,x+xxxx+xxx_xxxxx+xxxxx+xx=x--+	High
452	Input Value	<xxxxxx>xxxxx(x)</xxxxxx>	High
453	Input Value	<xxxxxx xxxxx>xxxxxx.xxxxxxx.xxxxxxxxxx.xxxxxxx(xxxxx_xxxxxxx).xxxx(xxx);</xxxxxx>	High
454	Input Value	\xxx../../../../xxx/xxxxxx	High
455	Network Port	xxx/xxxx	Medium
456	Network Port	xxx/xxxx (xx-xxx-xxxxxxx)	High
457	Network Port	xxx/xxxxx	Medium
458	Network Port	xxx xxxxxx xxxx	High

References (2)

The following list contains external sources which discuss the actor and the associated activities:

◂ PreviousOverviewNext ▸

Do you know our Splunk app?

Download it now for free!