|
Rockwell cve 2023-3595 and 2023-3596 signatures
|
|
0
|
650
|
July 20, 2023
|
|
Konni.APT
|
|
1
|
453
|
July 14, 2023
|
|
Possible FP: ET MALWARE Sourtoff Receiving Simda Payload
|
|
4
|
327
|
July 7, 2023
|
|
Mystic Stealer signature
|
|
6
|
677
|
June 28, 2023
|
|
StatusRecorder
|
|
1
|
381
|
June 27, 2023
|
|
ObserverStealer
|
|
5
|
591
|
June 23, 2023
|
|
GoodMorning Ransomware
|
|
7
|
477
|
June 23, 2023
|
|
FPs on new sig 2854494
|
|
2
|
264
|
June 20, 2023
|
|
SIG: MoveIt File Transfer WebShell Interaction
|
|
3
|
737
|
June 13, 2023
|
|
DynamicRAT
|
|
2
|
554
|
June 10, 2023
|
|
Gurcu stealer report outbound
|
|
7
|
415
|
May 30, 2023
|
|
New Signature: MalDoc/Gamaredon CnC Activity
|
|
1
|
202
|
May 19, 2023
|
|
Tracemap checkin
|
|
2
|
229
|
May 19, 2023
|
|
False positive for SID 2015813?: DNS Query Sinkhole Domain
|
|
1
|
324
|
May 15, 2023
|
|
Need a feedback about Kerio Control rule that's blocking the web, domen, even application
|
|
3
|
294
|
May 1, 2023
|
|
Possible FP on 2044745 (SOMNIRECORD Backdoor CMD Command in DNS Query)?
|
|
2
|
647
|
March 23, 2023
|
|
2013914: Not really relevant anymore?
|
|
1
|
292
|
March 9, 2023
|
|
GitLab Pre-Auth RCE (CVE-2021-22205) Signature
|
|
3
|
611
|
February 18, 2023
|
|
Kelios check in
|
|
2
|
391
|
February 3, 2023
|
|
Boost Beast check in and response
|
|
3
|
246
|
January 31, 2023
|
|
GCleaner Sig Submission
|
|
1
|
437
|
January 31, 2023
|
|
More DCRat Sig Submissions
|
|
2
|
185
|
January 20, 2023
|
|
DCRat Sig Submission
|
|
2
|
443
|
January 12, 2023
|
|
ViperSoftX C2 domains
|
|
4
|
391
|
January 10, 2023
|
|
RedLine Stealer beacon
|
|
1
|
390
|
January 6, 2023
|
|
Bandios C2 Check in
|
|
4
|
286
|
December 27, 2022
|
|
Dapato password stealer
|
|
2
|
254
|
December 15, 2022
|
|
New signature for Valyria
|
|
5
|
462
|
December 14, 2022
|
|
ET / ETPRO INFO rules that does not have severity "Informational"
|
|
5
|
3504
|
December 1, 2022
|
|
Regarding Coverage for CVE-2022-41040, CVE-2022-41082 (aka ProxyNotShell)
|
|
2
|
2080
|
October 5, 2022
|