Using "US-CERT Critical Infrastructure Information Notice CIIN-08-005-01 January 05, 2008" as the reference. I'd like to create a custom signature that looks for the string "0.js"
The effort is to determine if my webservers have been or will be impacted as we allow SQL querries and injection, but the servers are patched.
Thanks