Parameters in the customized error page:
Transaction ID = 2340001-PPE1 Session ID = AAE7JOcRZzvORgoAAAAAADtW81pnnJrxSpSQO3xxA4Vvf8RrdDQvJWaYQ3FMrlEPOw== Violation Category = APPFW_STARTURL Violation Log = CEF:0|Citrix|NetScaler|NS13.1|APPFW|APPFW_STARTURL|6|src=3.139.81.143 geolocation=Unknown spt=38943 method=GET request=https://quatangmomoi.bsc.com.vn/ngon-ngu/2bbbaaacongzzztyaaatongzzzquanaaaRAT msg=Disallow Illegal URL. cn1=3381888 cn2=2340001 cs1=WAFPROF-ho-website-443 cs2=PPE1 cs3=AAE7JOcRZzvORgoAAAAAADtW81pnnJrxSpSQO3xxA4Vvf8RrdDQvJWaYQ3FMrlEPOw== cs4=ALERT cs5=2024 act=blocked Session Cookie : -