ioc[.]one - OSINT Cyber Threat Intelligence Database

Forward NGINX logs to a SIEM/SOAR

Tags

attack-pattern:

Exploits - T1587.004 Exploits - T1588.005 Python - T1059.006 Server - T1583.004 Server - T1584.004 Brute Force - T1110

Show in Graph

Common Information

Type	Value
UUID	86715618-9a6d-4793-951d-9bbdb5d81992
Fingerprint	b1384d41a5a5d486
Analysis status	DONE
Considered CTI value	0
Text language
Published	Sept. 3, 2024, 10:08 p.m.
Added to db	Sept. 4, 2024, 12:38 a.m.
Last updated	Nov. 17, 2024, 6:50 p.m.
Headline	Forward NGINX logs to a SIEM/SOAR
Title	Forward NGINX logs to a SIEM/SOAR
Detected Hints/Tags/Attributes	11/1/5

Source URLs

	Redirection	Url
Details	Source	https://medium.com/@wasantosfi/forward-nginx-logs-to-a-siem-soar-077ae1688e4b?source=rss------cybersecurity-5

URL Provider

Details	Provider	Source level domain
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	167	✔	Cybersecurity on Medium	https://medium.com/feed/tag/cybersecurity	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	Domain	28		www.paypal.com
Details	File	2		security.log
Details	File	13		output.log
Details	IPv4	1441		127.0.0.1
Details	Url	5		https://www.paypal.com/donate/?hosted_button_id=zz6ef3pybr93j