SOC169

  1. SOC169 - Possible IDOR Attack Detected

  1. Checking Source IP address on VirusTotal, Cisco Talos Intelligence and AbuseIPDB.

Reports and comments:

  1. What Log Managements shows us about this IP address?

and few RAW logs:

We can see in the RAW logs, attacker changed value of id, and he got response status: 200.

It's mean attack has been done successfully.

  1. Closing alert.

Last updated