Sending a malicious package as a test to test Suricata alerts

security linux curl suricata

Solution 1:

http://testmynids.org/uid/index.html or http://www.testmyids.ca/ can be used to test, it will raise an "Attempted Information Leak".

For the reverse proxy, you can create an HTML file with the content "uid=0(root) gid=0(root) groups=0(root)" on the web server 'http://webserver1/test_ids.html' then you can use curl to download it.

Related

What's the maximum size of an nginx *.conf file?
Can an SMTP server tell the sending MTA to send to another address?
Google Cloud Services - unable to SSH into instance at all
Have nginx redirect everything to https except one directory
Can't change the data-directory for MariaDB Centos7.6
How-to DNAT-forward all IP traffic on Windows 10 from IP1 to IP2?
Clarification on the configuration of a mail server
Elevating user to root with Ansible
Where does the permissions of '/tmp' folder inside a docker container inherited from?
NGINX - allow access to specific URL only via a subdomain
OpenVPN server, executing openvpn with the config as argument produces no output
Running computations >60min on Google Cloud Run