([^=&]*=[^=&]*&){30,} |
-파라미터 갯수가 30개 이상인 패킷 탐지
[예제 POST 패킷 헤더]
POST / HTTP/1.1 Host: 192.168.124.145 Content-Type: application/x-www-form-urlencoded User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; de; rv:1.9.2.20) Gecko/20110803 Firefox/3.6.20 ( .NET CLR 3.5.30729; .NET4.0E) Content-Length: 1578125 0000000=&000000FY=&000000G8=&000000H%17=&000000D%9B=&00000FY0=&00000FYFY=&00000FYG8=&00000FYH%17=&00000FYD%9B=&00000G80=&00000G8FY=&00000G8G8=&00000G8H%17=&00000G8D%9B=&00000H%170=&00000H%17FY=&00000H%17G8=&00000H%17H%17=&00000H%17D%9B=&00000D%9B0=&00000D%9BFY=&00000D%9BG8=&00000D%9BH%17=&00000D%9BD%9B=&0000FY00=&0000FY0FY=&0000FY0G8=&0000FY0H%17=&0000FY0D%9B=&0000FYFY0=&0000FYFYFY=&0000FYFYG8=&0000FYFYH%17=&0000FYFYD%9B=&0000FYG80=&0000FYG8FY=&0000FYG8G8=&0000FYG8H%17=&0000FYG8D%9B=&0000FYH%170=&0000FYH%17FY=&0000FYH%17G8=&0000FYH%17H%17=&0000FYH%17D%9B=&0000FYD%9B0=&0000FYD%9BFY=&0000FYD%9BG8=&0000FYD%9BH%17=&0000FYD%9BD%9B=&0000G800=&0000G80FY=&0000G80G8=&0000G80H%17=&0000G80D%9B=&0000G8FY0=&0000G8FYFY=&0000G8FYG8=&0000G8FYH%17=&0000G8FYD%9B=&0000G8G80=&0000G8G8FY=&0000G8G8G8=&0000G8G8H%17=&0000G8G8D%9B=&0000G8H%170=&0000G8H%17FY=&0000G8H%17G8=&0000G8H%17H%17=&0000G8H%17D%9B=&0000G8D%9B0=&0000G8D%9BFY=&0000G8D%9BG8=&0000G8D%9BH%17=&0000G8D%9BD%9B=&0000H%1700=&0000H%170FY=&0000H%170G8=&0000H%170H%17=&0000H%170D%9B=&0000H%17FY0=&0000H%17FYFY=&0000H%17FYG8=&0000H%17FYH%17=&0000H%17FYD%9B=&0000H%17G80=&0000H%17G8FY=&0000H%17G8G8=&0000H%17G8H%17=&0000H%17G8D%9B=&0000H%17H%170=&0000H%17H%17FY=&0000H%17H%17G8=&0000H%17H%17H%17=&0000H%17H%17D%9B=&0000H%17D%9B0=&0000H%17D%9BFY=&0000H%17D%9BG8=&0000H%17D%9BH%17=&0000H%17D%9BD%9B=&0000D%9B00=&0000D%9B0FY=&0000D%9B0G8=&0000D%9B0H%17=&0000D%9B0D%9B=&0000D%9BFY0=&0000D%9BFYFY=&0000D%9BFYG8=&0000D%9BFYH%17=&0000D%9BFYD%9B=&0000D%9BG80=&0000D%9BG8FY=&0000D%9BG8G8=&0000D%9BG8H%17=&0000D%9BG8D%9B=&0000D%9BH%170=&0000D%9BH%17FY=&0000D%9BH%17G8=&0000D%9BH%17H%17=&0000D%9BH%17D%9B=&0000D%9BD%9B0=&0000D%9BD%9BFY=&0000D%9BD%9BG8=&0000D%9BD%9BH%17=&0000D%9BD%9BD%9B=&000FY000=&000FY00FY=&000FY00G8=&000FY00H%17=&000FY00D%9B=&000FY0FY0=&000FY0FYFY=&000FY0FYG8=&000FY0FYH%17=&000FY0FYD%9B=&000FY0G80=&000FY0G8FY=&000FY0G8G8=&000FY0G8H%17=&000FY0G8D%9B=&000FY0H%170=&000FY0H%17FY=&000FY0H%17G8=&000FY0H%17H%17=&000FY0H%17D%9B=&000FY0D%9B0=&000FY0D%9BFY=&000FY0D%9BG8=&000FY0D%9BH%17=&000FY0D%9BD%9B=&000FYFY00=&000FYFY0FY=&000FYFY0G8=&000FYFY0H%17=&000FYFY0D%9B=&000FYFYFY0=&000FYFYFYFY=&000FYFYFYG8=&000FYFYFYH%17=&000FYFYFYD%9B=&000FYFYG80=&000FYFYG8FY=&000FYFYG8G8=&000FYFYG8H%17=&000FYFYG8D%9B=&000FYFYH%170=&000FYFYH%17FY=&000FYFYH%17G8=&000FYFYH%17H%17=&000FYFYH%17D%9B=&000FYFYD%9B0=&000FYFYD%9BFY=&000FYFYD%9BG8=&000FYFYD%9BH%17=&000FYFYD%9BD%9B=&000FYG800=&000FYG80FY=&000FYG80G8=&000FYG80H%17=&000FYG80D%9B=&000FYG8FY0=&000FYG8FYFY=&000FYG8FYG8=&000FYG8FYH%17=&000FYG8FYD%9B=&000FYG8G80=&000FYG8G8FY=&000FYG8G8G8=&000FYG8G8H%17=&000FYG8G8D%9B=&000FYG8H%170=&000FYG8H%17FY=&000FYG8H%17G8=&000FYG8H%17H%17=&000FYG8H%17D%9B=&000FYG8D%9B0=&000FYG8D%9BFY=&000FYG8D%9BG8=&000FYG8D%9BH%17=&000FYG8D%9BD%9B=&000FYH%1700=&000FYH%170FY=&000FYH%170G8=&000FYH%170H%17=&000FYH%170D%9B=&000FYH%17FY0=&000FYH%17FYFY=&000FYH%17FYG8=&000FYH%17FYH%17=&000FYH%17FYD%9B=&000FYH%17G80=&000FYH%17G8FY=&000FYH%17G8G8=&000FYH%17G8H%17=&000FYH%17G8D%9B=&000FYH%17H%170=&000FYH%17H%17FY=&000FYH%17H%17G8=&000FYH%17H%17H%17=&000FYH%17H%17D%9B=&000FYH%17D%9B0=&000FYH%17D%9BFY=&000FYH%17D%9BG8=&000FYH%17D%9BH%17=&000FYH%17D%9BD%9B=&000FYD%9B00=&000FYD%9B0FY=&000FYD%9B0G8=&000FYD%9B0H%17=&000FYD%9B0D%9B=&000FYD%9BFY0=&000FYD%9BFYFY=&000FYD%9BFYG8=&000FYD%9BFYH%17=&000FYD%9BFYD%9B=&000FYD%9BG80=&000FYD%9BG8FY=&000FYD%9BG8G8=&000FYD%9BG8H%17=&000FYD%9BG8D%9B=&000FYD%9BH%170=&000FYD%9BH%17FY=&000FYD%9BH%17G8=&000FYD%9BH%17H%17=&000FYD%9BH%17D%9B=&000FYD%9BD%9B0=&000FYD%9BD%9BFY=&000FYD%9BD%9BG8=&000FYD%9BD%9BH%17=&000FYD%9BD%9BD%9B=&000G8000=&000G800FY=&000G800G8=&000G800H%17=&000G800D |
※현재 티스토리 버그로 IE 가 아닌 다른 브라우저에서는 표 내용이 정상 출력되지 않습니다.
반응형
'보안 > 기초' 카테고리의 다른 글
컴퓨터(PC) 해킹 확인 방법 및 악성코드 감염 원인/주요 증상/조치법 알아보기 (0) | 2024.04.17 |
---|---|
Windows Event Log 설정 (0) | 2013.03.19 |
암호화 알고리즘 정리 (0) | 2010.08.11 |
솔라리스 네트워크 커널 보안 튜닝 (ndd) (0) | 2010.08.11 |
NetBIOS 관련 프로토콜의 종류 특징및 취약점 대안 (1) | 2010.08.11 |