virus logo Intrusion Prevention

sqlmap.Scanner

description-logoDescription

This indicates detection of an attempted SQL Injection scan on a server by sqlmap Scanner.
sqlmap Scanner is used to probe web servers to see which systems are vulnerable to SQL Injection attacks. An attacker may use the scanner to identify that your system is vulnerable and perform further attacks based on its findings.

affected-products-logoAffected Products

All web servers

Impact logoImpact

System Compromise: Remote attackers can add, view, delete or modify data in the database of the affected application

recomended-action-logoRecommended Actions

Monitor the traffic from that network for any suspicious activity.

Coverage

IPS (Regular DB)
IPS (Extended DB)

References

https://github.com/sqlmapproject/sqlmap
ID 46199
Created Jun 11, 2018
Updated Jun 19, 2018
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS All
Affected App Other
Profile Type Anomaly