Parameters in the customized error page:
Transaction ID = 1813002-PPE1 Session ID = AAE7ZNMRZzv2twcAAAAAADtW81pnnJrxSpSQO3xxA4Vvf8RrdDQvJWaYQ3FMrlEPOw== Violation Category = APPFW_STARTURL Violation Log = CEF:0|Citrix|NetScaler|NS13.1|APPFW|APPFW_STARTURL|6|src=18.224.58.152 geolocation=Unknown spt=14806 method=GET request=https://quatangmomoi.bsc.com.vn/ngon-ngu/2bbbaaacongzzztyaaatongzzzquanaaaSSH msg=Disallow Illegal URL. cn1=2524137 cn2=1813002 cs1=WAFPROF-ho-website-443 cs2=PPE1 cs3=AAE7ZNMRZzv2twcAAAAAADtW81pnnJrxSpSQO3xxA4Vvf8RrdDQvJWaYQ3FMrlEPOw== cs4=ALERT cs5=2024 act=blocked Session Cookie : -