|
About the Rule Signatures category
|
|
0
|
1728
|
September 12, 2022
|
|
SIGS: OneStartAI.PUA
|
|
2
|
6
|
February 7, 2025
|
|
Licensing of third-party rules
|
|
3
|
51
|
January 29, 2025
|
|
ET INFO PE EXE or DLL Windows file download HTTP (2018959), and Recent Tuning
|
|
0
|
151
|
January 17, 2025
|
|
ET MALWARE Gamaredon.APT TryCloudFlare Activity
|
|
2
|
99
|
January 7, 2025
|
|
The Many CVEs of D-Link HNAP Command Injection
|
|
0
|
98
|
January 2, 2025
|
|
ET SCAN ELF/Mirai Variant
|
|
2
|
85
|
December 31, 2024
|
|
SIGS: Zloader
|
|
2
|
99
|
December 17, 2024
|
|
SIG: TryCloudFlare in SNI
|
|
1
|
68
|
December 10, 2024
|
|
ET TROJAN Win32/BugSleep CnC Checkin
|
|
4
|
275
|
November 2, 2024
|
|
SIGS: Android/TrickMo.Banker
|
|
2
|
60
|
October 29, 2024
|
|
Ailurophile Stealer
|
|
1
|
146
|
October 28, 2024
|
|
Signature Mints Loader
|
|
1
|
87
|
October 25, 2024
|
|
Privateloader
|
|
5
|
363
|
October 14, 2024
|
|
[False Positive] ET INFO domain VirusTotal
|
|
1
|
101
|
October 14, 2024
|
|
PortStarter Backdoor Sigs
|
|
1
|
48
|
October 10, 2024
|
|
Grimresource transformNode Obfuscation
|
|
5
|
97
|
October 10, 2024
|
|
Signature: CleanUp Loader
|
|
2
|
76
|
October 9, 2024
|
|
Sid:2055984 Ivanti Cloud Service Appliance Authenticated Command Injection (CVE-2024-8190)
|
|
1
|
103
|
October 1, 2024
|
|
Poverty Stealer
|
|
12
|
893
|
September 17, 2024
|
|
FP? NanoLocker - SID: 2022331
|
|
1
|
64
|
September 12, 2024
|
|
NMAP ruleset are FP?
|
|
1
|
86
|
September 5, 2024
|
|
DiamotrixClipper
|
|
2
|
192
|
August 30, 2024
|
|
BadSpace Sigs
|
|
1
|
59
|
August 19, 2024
|
|
Where to find details on each threat definition?
|
|
1
|
198
|
August 5, 2024
|
|
Vidar Stealer
|
|
7
|
607
|
July 15, 2024
|
|
Metastealer v.5 TLS
|
|
6
|
465
|
July 10, 2024
|
|
Why not leverage Suricata datasets for IoC rules?
|
|
1
|
124
|
July 8, 2024
|
|
Cryptbot Stealer - Update on Rules
|
|
4
|
587
|
July 5, 2024
|
|
ET POLICY Reserved Internal IP Traffic
|
|
1
|
264
|
June 24, 2024
|