HTTP Response-based attacks explained
Technical Articles ID:
KB54134
Last Modified: 2024-01-19 11:02:44 Etc/GMT
Last Modified: 2024-01-19 11:02:44 Etc/GMT
Affected Products
Languages:
This article is available in the following languages:
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Trellix announced the establishment of the Trellix Advanced Research Center to advance global threat intelligence.
Trellix Advanced Research Center analyzes threat data on ransomware, nation-states, sectors, vectors, LotL, MITRE ATT&CK techniques, and emails.
HTTP Response-based attacks explained
Technical Articles ID:
KB54134
Last Modified: 2024-01-19 11:02:44 Etc/GMT Environment
Trellix Intrusion Prevention System (Trellix IPS)
SummaryHTTP Response scanning
The Sensor can detect attacks in HTTP responses. The Sensor can scan plain HTML text responses, but can't decode traffic that contains zipped, encrypted, or MIME-encoded content. This feature is configurable per direction of an interface.You must specifically enable the HTTP response feature on each Sensor port to detect HTTP response-based attacks (except where noted in the HTTP Response-based attacks description below). HTTP Response-based attacks - categories and descriptions
Related InformationNOTE: The referenced content is available only to logged in ServicePortal users. To view the content, click the link and log in when prompted.
Previous Document ID (Secured)
2789494
Affected ProductsLanguages:This article is available in the following languages: |
|