Threat Detection Coverage

Octarine inspects all traffic, including the request and response payload of every connection, to look for known threats. Customers can see all the signatures, common vulnerabilities and exposures (CVEs), and threat intelligence Octarine uses via the Octarine Threat Portal.

Latest CVE covered

Name Category CVE
Go SSH servers Denial of Service Denial of Service CVE-2020-9283
OpenBSD OpenSMTPD Remote Code Exection Linux commands CVE-2020-7247
Jenkins RCE Attempt Application exploits CVE-2019-1003000
Webmin Package Updates Remote Command Execution Application exploits CVE-2019-12840
Belkin Wemo Unauthenticated Command Injection Botnets CVE-2019-12780

Latest threats: Application vulnerabilities

Name Sub-Category                 
Go SSH servers Denial of Service Denial of Service CVE-2020-9283
Jenkins CI Server insecure deserialization command execution Application exploits CVE-2016-0792
HP OpenView Storage Data Protector arbitrary command execution attempt Application exploits CVE-2011-0921
IBM WebSphere RCE Java Deserialization Application exploits CVE-2015-7450
OrientDB database query attempt Application exploits CVE-2017-11467

Latest threats: Command Injection

Name Sub-Category                 
OpenBSD OpenSMTPD Remote Code Exection Linux commands CVE-2020-7247
Microsoft SQL Server sa Account Default Blank Password SQL Injection CVE-2000-1209
MS SQL sp_configure: configuration change SQL Injection
PHP mime_split Function POST Request Overflow Shellcode CVE-2002-0081
Windows Shell Remote Code Execution Vulnerability Shellcode CVE-2018-8414

Latest threats: Data exfiltration

Name Sub-Category                 
Virtualmin Anonymous Proxy attempt Protocol tunneling
eDonkey File Status Request P2P
DNS Over HTTPS (Cloudflare) Protocol tunneling
Donkeyp2p Update P2P
Tor Get Status Request Protocol tunneling

Latest threats: Malicious tools

Name Sub-Category                 
HTTP 414 Request URI Too Large Scanners
Telnet access Scanners CVE-1999-0619
ShellBot.C retrieval Botnets
Adobe Coldfusion scan admin Login URLs Scanners CVE-1999-0756
Win.Trojan.Gen variant outbound connection Botnets