Fortinet black logo

20000027

Copy Link
Copy Doc ID 2dc049b9-fa22-11eb-8f3f-00505692583a:340235
Download PDF

20000027

Meaning

Credential stuffing defense violation.

Field name Description

log_id

20000027

See Log ID numbers.

main_type

Credential Stuffing Defense

subtype

  • User Tracking
  • Site Publish

Examples

v009xxxxdate=2019-09-21 time=12:55:57 log_id=20000027 msg_id=000034399096 device_id=FV3K1E3216000005 vd="root" timezone="(GMT+8:00)Beijing,ChongQing,HongKong,Urumgi" timezone_dayst="GMTa-8" type=attack pri=alert main_type="Credential Stuffing Defense" sub_type="User Tracking" trigger_policy="" severity_level=Informative proto=tcp service=http backend_service=unknown action=Alert policy="FWB_Policy_Default_AutoTest_ttp" src=10.114.0.102 src_port=51271 dst=10.114.0.1 dst_port=80 http_method=post http_url="/autotest/user_tracking/login.php" http_host="login.fwbqa.com" http_agent="python-for-fortiweb" http_session_id=none msg="Triggered by user bjrehdorf@hotmail.com : Credential Stuffing Defense Violation" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Reserved" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="1.x" dev_id="none" es=0 threat_weight=10 history_threat_weight=0 threat_level=Medium ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="none" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="A3:2017-Sensitive Data Exposure" bot_info="none"

20000027

Meaning

Credential stuffing defense violation.

Field name Description

log_id

20000027

See Log ID numbers.

main_type

Credential Stuffing Defense

subtype

  • User Tracking
  • Site Publish

Examples

v009xxxxdate=2019-09-21 time=12:55:57 log_id=20000027 msg_id=000034399096 device_id=FV3K1E3216000005 vd="root" timezone="(GMT+8:00)Beijing,ChongQing,HongKong,Urumgi" timezone_dayst="GMTa-8" type=attack pri=alert main_type="Credential Stuffing Defense" sub_type="User Tracking" trigger_policy="" severity_level=Informative proto=tcp service=http backend_service=unknown action=Alert policy="FWB_Policy_Default_AutoTest_ttp" src=10.114.0.102 src_port=51271 dst=10.114.0.1 dst_port=80 http_method=post http_url="/autotest/user_tracking/login.php" http_host="login.fwbqa.com" http_agent="python-for-fortiweb" http_session_id=none msg="Triggered by user bjrehdorf@hotmail.com : Credential Stuffing Defense Violation" signature_subclass="N/A" signature_id="N/A" signature_cve_id="N/A" srccountry="Reserved" content_switch_name="none" server_pool_name="FWB_server_pool" false_positive_mitigation="none" user_name="Unknown" monitor_status="Disabled" http_refer="none" http_version="1.x" dev_id="none" es=0 threat_weight=10 history_threat_weight=0 threat_level=Medium ftp_mode="N/A" ftp_cmd="N/A" cipher_suite="none" ml_log_hmm_probability=0.000000 ml_log_sample_prob_mean=0.000000 ml_log_sample_arglen_mean=0.000000 ml_log_arglen=0 ml_svm_log_main_types=0 ml_svm_log_match_types="none" ml_svm_accuracy="none" ml_domain_index=0 ml_url_dbid=0 ml_arg_dbid=0 ml_allow_method="none" owasp_top10="A3:2017-Sensitive Data Exposure" bot_info="none"