|
About the Rule Signatures category
|
|
0
|
1437
|
September 12, 2022
|
|
Vidar Stealer
|
|
7
|
525
|
July 15, 2024
|
|
Metastealer v.5 TLS
|
|
6
|
336
|
July 10, 2024
|
|
Why not leverage Suricata datasets for IoC rules?
|
|
1
|
75
|
July 8, 2024
|
|
Cryptbot Stealer - Update on Rules
|
|
4
|
499
|
July 5, 2024
|
|
ET POLICY Reserved Internal IP Traffic
|
|
1
|
94
|
June 24, 2024
|
|
False positive on rule #2032926
|
|
4
|
121
|
June 23, 2024
|
|
NjRAT variant - tXRAT v.2.3R
|
|
1
|
138
|
June 21, 2024
|
|
False positives on hunting rule
|
|
2
|
83
|
June 21, 2024
|
|
WhiteSnake
|
|
4
|
288
|
June 17, 2024
|
|
Gh0stRat.Generic SweetSpecter variant
|
|
1
|
87
|
June 13, 2024
|
|
Privateloader
|
|
2
|
229
|
December 26, 2023
|
|
ET EXPLOIT Fortinet FortiSIEM Unauthenticated Command Injection CVE-2023-34992
|
|
3
|
161
|
June 3, 2024
|
|
PrivateLoader Signature
|
|
2
|
156
|
May 20, 2024
|
|
Lumma Stealer Domain
|
|
4
|
162
|
May 20, 2024
|
|
New to ET
|
|
3
|
190
|
May 20, 2024
|
|
SIG: ET TROJAN Atomic macOS (AMOS) Stealer JoinSystem
|
|
3
|
176
|
May 15, 2024
|
|
SIGS: W32/Badspace.Backdoor
|
|
2
|
1524
|
May 14, 2024
|
|
DarkGate new version
|
|
5
|
293
|
May 6, 2024
|
|
SIGS:Kapeka/ICYWELL Backdoor APT44/Sandworm Part 1
|
|
2
|
218
|
April 19, 2024
|
|
SIGS: Kapeka/ICYWELL Backdoor APT44/Sandworm Part 2
|
|
1
|
135
|
April 18, 2024
|
|
Snort alerts on 2014-12-15
|
|
0
|
218
|
April 10, 2024
|
|
Etpro telemetry in opnsense
|
|
1
|
200
|
March 29, 2024
|
|
FP on 2856495 - "ETPRO HUNTING If-Unmodified-Since Header with Microsoft BITS User-Agent"
|
|
1
|
119
|
March 27, 2024
|
|
NEW SIG: ET TROJAN Falsefont.Backdoor APT33 Initial Handshake
|
|
1
|
205
|
March 22, 2024
|
|
Signature: ET TROJAN Possible HijackLoader Second Stage PNG
|
|
5
|
255
|
March 21, 2024
|
|
AsukaStealer (Observerstealer.Gen)
|
|
2
|
227
|
March 19, 2024
|
|
New Signatures: BunnyLoader
|
|
1
|
239
|
March 18, 2024
|
|
Xeno-RAT
|
|
12
|
756
|
March 13, 2024
|
|
PlanetStealer
|
|
1
|
338
|
March 5, 2024
|