Support #1996: Suricata worked in IDS mode ,Could detection the https attack? - Suricata - Open Information Security Foundation

Support #1996

Updated by Victor Julien almost 8 years ago

I have the private key in the webserver. 

 If i send the http request: 
 <pre> 
 http://192.168.1.100/a.php?id=1 and 1=1 union select 1,2,3 from test 
 </pre> 

 the attack will be deteced in the fast.log 

 BUT i used the https request like: 

 <pre> 
 https://192.168.1.100/a.php?id=1 and 1=1 union select 1,2,3 from test 
 </pre> 

 and the suricata didn`t deteced the attack. 

 thanks.