Commits · 1de664c39014f826f772a2288dd3f73f852ef574 · fact-depend / rules

12 Apr, 2022 4 commits
- Index updated · 1de664c3
  yararules authored Apr 12, 2022
  
  1de664c3 Browse Files
- Fixed #421 Deprecated rule MALW_Retefe.yar · cf3a8653
  Jaume Martin authored Apr 12, 2022
  
  cf3a8653 Browse Files
- Index updated · 5a719603
  yararules authored Apr 12, 2022
  
  5a719603 Browse Files
- Merge pull request #426 from KatsuragiCSL/master · 73fe852a
```
Added rule for executables created by pyinstaller on OSX
```
  Jaume Martin authored Apr 12, 2022
  73fe852a Browse Files
01 Apr, 2022 3 commits
- Update malware_index.yar · 338389f0
  KatsuragiCSL authored Apr 01, 2022
  
  338389f0 Browse Files
- Update index.yar · 8f0aad67
  KatsuragiCSL authored Apr 01, 2022
  
  8f0aad67 Browse Files
- pyinstaller on macos · 1dabb33f
  KatsuragiCSL authored Apr 01, 2022
  
  1dabb33f Browse Files
18 Nov, 2021 3 commits

Index updated · 61e2fc3c
yararules authored Nov 18, 2021

61e2fc3c Browse Files
Merge pull request #423 from RandomRhythm/patch-1 · 1d7293e2
```
Tighten Glasses rule
```
Jaume Martin authored Nov 18, 2021
1d7293e2 Browse Files

Marked GlassesCode rule private to prevent alerting. Modified Glasses rule to require both GlassesCode and GlassesStrings to limit alerting. Added a reference URL and a reference file hash value to the rules. Updated the last modified dates. Tested rules against the reference hash file with both GlassesStrings and Glasses producing detections.

Fixes #422

authored Nov 17, 2021

12c21f76 Browse Files

08 Oct, 2021 3 commits
- Index updated · b4126f1d
  yararules authored Oct 08, 2021
  
  b4126f1d Browse Files
- Fix #420 · 56c5e06b
  Jaume Martin authored Oct 08, 2021
  
  56c5e06b Browse Files
- Update Maldoc_CVE_2017_11882.yar · 09d6f650
```
now it only detects documents
```
  Bondey authored Oct 08, 2021
  09d6f650 Browse Files
25 Aug, 2021 2 commits
- Index updated · d1851b63
  yararules authored Aug 25, 2021
  
  d1851b63 Browse Files
- Fixes #419 · 23261cec
  Jaume Martin authored Aug 26, 2021
  
  23261cec Browse Files
05 Aug, 2021 5 commits
- Index updated · 10b16848
  yararules authored Aug 05, 2021
  
  10b16848 Browse Files
- Merge pull request #415 from sylvainpelissier/ecc_order · 1967dff8
```
Add BLS12-381 subgroup order
```
  Jaume Martin authored Aug 05, 2021
  1967dff8 Browse Files
- Merge pull request #417 from CYB3RMX/patch-1 · 05f06651
```
Added msql database usage checker
```
  Jaume Martin authored Aug 05, 2021
  05f06651 Browse Files
- Merge pull request #413 from Xyl2k/master · fae25c09
```
Create MALW_MacGyver.yar
```
  Jaume Martin authored Aug 05, 2021
  fae25c09 Browse Files
- Added msql database usage checker · 0d895254
  Mehmet Ali KERİMOĞLU authored Aug 05, 2021
  
  0d895254 Browse Files
30 Jul, 2021 1 commit
- Add BLS12-381 subgroup order · 05500412
  Sylvain Pelissier authored Jul 30, 2021
  
  05500412 Browse Files
11 May, 2021 1 commit
- Create MALW_MacGyver.yar · 11e24a00
```
rule to detect smard-card related hacktool/malwares
```
  Steven K authored May 11, 2021
  11e24a00 Browse Files
21 Apr, 2021 2 commits
- Index updated · a7463b24
  yararules authored Apr 21, 2021
  
  a7463b24 Browse Files
- Merge pull request #410 from manfred-kaiser/master · 4d372eaa
```
Added Rule for tweetable-polyglot-png
```
  Jaume Martin authored Apr 21, 2021
  4d372eaa Browse Files
23 Mar, 2021 3 commits
- Update tweetable-polyglot-png.yar · 3ca61e7e
  Manfred Kaiser authored Mar 23, 2021
  
  3ca61e7e Browse Files
- Update packers_index.yar · 292a3e59
  Manfred Kaiser authored Mar 23, 2021
  
  292a3e59 Browse Files
- Added TweetablePolygonPng · 099090a8
  Manfred Kaiser authored Mar 23, 2021
  
  099090a8 Browse Files
09 Mar, 2021 2 commits
- Index updated · 38722445
  yararules authored Mar 09, 2021
  
  38722445 Browse Files
- Merge pull request #407 from RandomRhythm/master · 5d1f42f6
```
Include license text
```
  Jaume Martin authored Mar 09, 2021
  5d1f42f6 Browse Files
27 Feb, 2021 3 commits
- PHP and ASPX China Chopper · 51be7dbf
```
Signed-off-by: Ryan B <randomrhythm@rhythmengineering.com>
```
  Ryan B authored Feb 27, 2021
  51be7dbf Browse Files
- Merge remote-tracking branch 'upstream/master' into master · f1ea16a6
  Ryan B authored Feb 27, 2021
  
  f1ea16a6 Browse Files
- Include license text · e3e442d4
```
Signed-off-by: Ryan B <randomrhythm@rhythmengineering.com>
```
  Ryan B authored Feb 27, 2021
  e3e442d4 Browse Files
26 Feb, 2021 2 commits
- Index updated · 85cb1fad
  yararules authored Feb 26, 2021
  
  85cb1fad Browse Files
- Update README.md · cc76f933
  Jaume Martin authored Feb 26, 2021
  
  cc76f933 Browse Files
05 Feb, 2021 2 commits
- Index updated · e388b607
  yararules authored Feb 05, 2021
  
  e388b607 Browse Files
- Merge pull request #400 from 2d4d/master · 5021ddc1
```
add TOOLKIT_Redteam_Tools_by_Name.yar, TOOLKIT_Redteam_Tools_by_GUID.…
```
  Jaume Martin authored Feb 05, 2021
  5021ddc1 Browse Files
23 Jan, 2021 1 commit

add TOOLKIT_Redteam_Tools_by_Name.yar, TOOLKIT_Redteam_Tools_by_GUID.yar,… · 1605470d

add TOOLKIT_Redteam_Tools_by_Name.yar, TOOLKIT_Redteam_Tools_by_GUID.yar, TOOLKIT_Solarwinds_credential_stealer.yar

rules to detect 339 hacktools, mostly c#

authored Jan 23, 2021

1605470d Browse Files

28 Dec, 2020 3 commits
- Index updated · d3b9d62e
  yararules authored Dec 28, 2020
  
  d3b9d62e Browse Files
- Merge pull request #388 from Xyl2k/patch-4 · 608de9df
```
Create MALW_PurpleWave.yar
```
  Jaume Martin authored Dec 28, 2020
  608de9df Browse Files
- Merge pull request #389 from Xyl2k/patch-3 · f36eca9d
```
Create Email_PHP_Mailer.yar
```
  Jaume Martin authored Dec 28, 2020
  f36eca9d Browse Files