Switch branches/tags
Find file History
brian
brian cleanup
Latest commit bdaa30b Dec 10, 2018
Permalink
Type Name Latest commit message Commit time
..
Failed to load latest commit information.
052618-drupalsite.yar yara signature updates May 29, 2018
052918_case109.yar added more yara signatures May 29, 2018
1-shell-093018.yar earthlink phish Sep 30, 2018
105mail-recon.yar bediger4000 repo Oct 29, 2018
404-2-shell-032118.yar shells Aug 19, 2018
404-shell-032118.yar more shells Aug 19, 2018
4700up-jpg.yar added more yara signatures May 29, 2018
620adjs_101118.yar hybrid-analsys report Oct 12, 2018
BabaYaga.yar implemented wordfence babayaga rules Jun 7, 2018
CPR4616Webshell.yar adding CPR4616_Webshell May 10, 2018
FOPO.yar Adding CPREA57.Webshell May 3, 2018
PHP-Mailer-K.yar PHP-Mailer-K.yar May 10, 2018
Tryag-File-Manager-1.yar Tryag-File-Manager Jul 15, 2018
WShell_PHP_Anuna.yar first commit of yara rules Apr 26, 2018
acme092018.yar acme shell Sep 21, 2018
adobe-phishing001.yar adobe phishing Aug 17, 2018
alfa-perl.yar adding new signatures May 22, 2018
alfa-shell.yar daily update to malware signatures May 18, 2018
alfa-shells090618.yar alfa shells Sep 6, 2018
annizod-xmr-miner.yar yara signature updates May 29, 2018
apache_XMR_MINER.yar paypal phishing kit Jun 8, 2018
botnet-panel090118.yar botnet kit sig Sep 2, 2018
c254853a.yar blazescan report Nov 25, 2018
cache-mailer.yar Adding CPREA57.Webshell May 3, 2018
case116_a_miner_persistence.yar case 116 sigs Jun 4, 2018
case117.yar sig updates Sep 26, 2018
case150-093018.yar sig updates Sep 30, 2018
case25-miners.yar weekly update Aug 6, 2018
case25-shells.yar weekly update Aug 6, 2018
case32-db.yar weekly update Aug 6, 2018
chase-bank-phish-082718.yar chase phish Aug 28, 2018
chase-bank-phish2-082718.yar chase phish 2 Aug 28, 2018
citibank-phishing-082318.yar phishing report Aug 23, 2018
class_12371_uploader.yar added more yara signatures May 29, 2018
cloki-09-30-18.yar cloki sigs Sep 30, 2018
cpanel-brute.yar sigs added indo, symlink, cpanel brutus May 14, 2018
crypto-jacking-0.yar rules for badpackets report https://badpackets.net/large-cryptojackin… May 7, 2018
crypto-jacking-1.yar rules for badpackets report https://badpackets.net/large-cryptojackin… May 7, 2018
cryptojacking_signatures.yar more crypto jacking domains Jul 13, 2018
dark-shell.yar added 2 new yara May 24, 2018
data_chaos_backdoor.yar adding new signatures May 22, 2018
day_uploader_shell.yar day uploader shell May 31, 2018
dedsec-symlinker.yar python symlinker May 30, 2018
docusign-phish-082618.yar docusign phishing Aug 27, 2018
drupal-CPREA57Webshell.yar editing CPREA57.Webshell May 3, 2018
drupal-index-ico-injection.yar drupal index injection May 21, 2018
drupal.js-coinhive.yar drupal coinhive and netscrape shell May 30, 2018
drupal_138.yar drupal malware Jun 23, 2018
drupal_injection_001.yar drupal injection Jun 9, 2018
drupal_injection_134.yar drupal injection Jun 15, 2018
drupalgeddon-0.yar rules for badpackets report https://badpackets.net/large-cryptojackin… May 7, 2018
earthlink-phish-093018.yar earthlink phish Sep 30, 2018
eitest1.yar python symlinker May 30, 2018
eitest_injection_1.yar updated eitest_injection_1 signature Aug 19, 2018
entabeam-phish.yar phishing Aug 25, 2018
fack.yar bediger4000 repo Oct 29, 2018
fun-082618.yar fun shell Aug 26, 2018
general-phishing090318.yar general phishing kit Sep 3, 2018
generic-phishing-082718.yar pishy Aug 29, 2018
gitignore.yar yara signature updates May 29, 2018
hand092018.yar sig updates Sep 20, 2018
hostingcloud-science.yar hostingcloud.science malicious js Dec 10, 2018
hotopponents-sites.yar sucuri tech support scam report Oct 28, 2018
ico-injection.yar ico injections May 18, 2018
index-malware-092518.yar sig updates Sep 26, 2018
indo-exploit.yar sigs added indo, symlink, cpanel brutus May 14, 2018
injection-032118.yar more shells Aug 19, 2018
injection-082218.yar injection script Aug 22, 2018
inv_09854_exe.yar invoice exe Jul 10, 2018
itune-phish001.yar signature updates Aug 12, 2018
joomla-shell-case21.yar weekly update Aug 6, 2018
js-malvertising.yar case 119 sigs Jun 4, 2018
license-091918.yar sig update Sep 20, 2018
linkedin-phish001.yar linkedin phish Aug 17, 2018
logo-miner090618.yar logo miner Sep 7, 2018
luk_miner.yar luk miner sigs Jun 3, 2018
magecart-sotheby.yar magecart-sotheby Dec 5, 2018
magecart1.yar magecart sigs trial Oct 17, 2018
magecart2.yar magecart sigs trial Oct 17, 2018
magecart3.yar magecart sigs trial Oct 17, 2018
magecart4.yar magecart sigs trial Oct 17, 2018
magecart5.yar magecart Dec 5, 2018
magento_sucuri_001.yar sucuri magento malware Jun 21, 2018
mailer1.yar Adding CPREA57.Webshell May 3, 2018
main_js_malvertising_139.yar signature update Jun 26, 2018
malvertising-4dd6090f04.yar false posisive correction Aug 19, 2018
malvertising-redirect-082518.yar phishing Aug 25, 2018
mass_bot_exploite_master.yar mass-bot-exploite-master Jul 15, 2018
master134.yar Master134 injection via Checkpoint Jul 30, 2018
match-phishing.yar phishing kits Aug 15, 2018
me0w-js-miner.yar daily update to malware signatures May 18, 2018
media-shell.yar added 2 new yara May 24, 2018
microsoft-phish001.yar signature updates Aug 12, 2018
microsoft-phish002.yar sharepoint phish Aug 18, 2018
miner-config.yar miner sig May 6, 2018
miner.yar Adding CPREA57.Webshell May 3, 2018
mirai-routerscripts102018.yar dlink avtech Oct 20, 2018
multi-miner-exe.yar miner elf exe's Aug 22, 2018
netscrape_shell.yar drupal coinhive and netscrape shell May 30, 2018
newsletter.yar bediger4000 repo Oct 29, 2018
ninoseki-phishing-actors.yar cleanup Dec 10, 2018
ninoseki-phishing-actors2.yar cleanup Dec 10, 2018
ninoseki-phishing-actors3.yar cleanup Dec 10, 2018
ninoseki-phishing-actors4.yar ninoseki phishing actor emails Nov 11, 2018
ninoseki-phishing-actors5.yar ninoseki phishing actor emails Nov 11, 2018
ninoseki-phishing-actors6.yar ninoseki phishing actor emails Nov 11, 2018
ninoseki-phishing-actors7.yar ninoseki phishing actor emails Nov 11, 2018
ninoseki-phishing-actors8.yar ninoseki phishing actor emails Nov 11, 2018
ninoseki-phishing-actors9.yar ninoseki phishing actor emails Nov 11, 2018
obfuscated-dde.yar dde sig Nov 11, 2018
onedrive-phish101818.yar phish add Oct 19, 2018
pass_shell.yar case 115 sigs Jun 4, 2018
paypal_phishing_kit_001.yar paypal phishing kit Jun 8, 2018
paypal_phishing_kit_002.yar bug fix Aug 15, 2018
perl-darkmailer.yar darkmailer Aug 25, 2018
perl-shell-082218.yar perl shell Aug 22, 2018
perl-socks-proxy.yar adding new signatures May 22, 2018
phishing-actors.yar phishing Sep 3, 2018
php-gen-0.yar php gen shell added May 4, 2018
php-gen-1.yar general php malware May 16, 2018
php-gen-3.yar yara signature updates May 29, 2018
pop_up_cache_082618.yar malware submission Aug 26, 2018
prowli.yar prowli yara rules Jun 7, 2018
rfi-perl-bot.yar adding new signatures May 22, 2018
s3sshll-093018.yar sig update Sep 30, 2018
sans-xme-072818.yar sans cryptojacker Jul 30, 2018
saskmade-net-redirects.yar securi redirect campaign Oct 28, 2018
scanner_obfuscated_shell.yar added more yara signatures May 29, 2018
searchtlp-092518.yar sig updates Sep 26, 2018
shells_119.yar case 119 sigs Jun 4, 2018
sig_7409295928_WSO_gen.yar WSO again Jun 15, 2018
simppell.yar bediger4000 repo Oct 29, 2018
smartsheet091018.yar smartsheet phishing Sep 13, 2018
solus-shell090218.yar solus shell Sep 3, 2018
stats5-090618.yar stat5 shell Sep 7, 2018
sucuri-wpcache.yar sucuri Erealitatea[.]net malware Nov 10, 2018
symlink-bypass-082418.yar symlink shell Aug 24, 2018
symlink-tool.yar sigs added indo, symlink, cpanel brutus May 14, 2018
tbl-status-shell.yar signature updates Aug 12, 2018
tekel.yar yara signature updates May 29, 2018
test-shell-uploader.yar shell and phish Aug 21, 2018
tndtttttttt.yar sig update Jul 13, 2018
updater.yar yara signature updates May 29, 2018
updw.yar yara signature updates May 29, 2018
upload-shell-082418.yar uploader shell Aug 24, 2018
uploader-092718.yar uploader shell Sep 28, 2018
uploader-shell090618.yar upload shell Sep 7, 2018
uploader-shell2-093018.yar upload shell Sep 30, 2018
uploader-shells-093018.yar uploader shells Sep 30, 2018
usaa-phishing001.yar usaa phishing Aug 17, 2018
vul_jquery_fileupload_cve_2018_9206.yar include Neo23x0 JQuery_FileUpload_CVE_2018_9206 yara sig Oct 23, 2018
weeman.yar signature update Jun 26, 2018
well-phishing0001.yar adding phishing kits May 15, 2018
wordfence-botnet.yar wordfence botnet report Dec 10, 2018
wordpress-index-injection.yar wordpress settings injection Aug 24, 2018
wordpress-injection-1.yar adding new signatures May 22, 2018
wordpress-injection-2.yar false positives May 24, 2018
wordpress-settings-injection.yar wordpress settings injection Aug 24, 2018
wordpress_admin_bd_082218.yar wordpress admin backdoor et al Aug 23, 2018
wp-shells_case137.yar signature update Jun 26, 2018
wp-thumb-081418.yar wp-thumb Aug 14, 2018
ws00-082618.yar ws00 and index shells Aug 26, 2018
x3d-phishing.yar more phishing Aug 16, 2018
xmlrpc-100218.yar sig update Oct 3, 2018
y_php_shell.yar y.php shell Jun 6, 2018
yertle.yar yertle shells Jul 28, 2018