valitydev/signature-base
14
0
Fork 0
mirror of https://github.com/valitydev/signature-base.git synced 2024-11-06 18:15:20 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
b302b84740
signature-base/yara
History
Florian Roth b302b84740 Danti and SVCMONDR Malware Rules 
PWC Report
http://pwc.blogs.com/cyber_security_updates/2016/05/exploring-cve-2015-2
545-and-its-users.html
Kaspersky Blog Post
https://securelist.com/analysis/publications/74828/cve-2015-2545-overvie
w-of-current-threats/
2016-05-25 16:14:11 -06:00
..
apt_alienspy_rat.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_apt6_malware.yar APT6 Malware Signature 2016-04-09 12:55:32 +02:00
apt_apt17_malware.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_apt28.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_apt30_backspace.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_backdoor_ssh_python.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_backspace.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_beepservice.yar Signature Update 2016-05-13 06:06:18 -06:00
apt_between-hk-and-burma.yar Adjusted SLServer Rule 2016-04-21 11:03:55 +02:00
apt_blackenergy_installer.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_blackenergy.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_bluetermite_emdivi.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_casper.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_cheshirecat.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_cloudduke.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_codoso.yar False Positives 2016-02-29 13:46:21 +01:00
apt_coreimpact_agent.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_cve2015_5119.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_danti_svcmondr.yar Danti and SVCMONDR Malware Rules 2016-05-25 16:14:11 -06:00
apt_deeppanda.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_derusbi.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_emissary.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_fakem_backdoor.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_fidelis_phishing_plain_sight.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_four_element_sword.yar Signature Updates 2016-04-20 09:26:09 +02:00
apt_ghostdragon_gh0st_rat.yar Gh0st Dragon RAT 2016-04-27 13:36:53 +02:00
apt_glassRAT.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_hackingteam_rules.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_hellsing_kaspersky.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_hizor_rat.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_indetectables_rat.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_inocnation.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_irontiger_trendmicro.yar False Positive Fixes 2016-04-26 10:04:19 +02:00
apt_irontiger.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_kaspersky_duqu2.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_keylogger_cn.yar New Signatures 2016-03-09 13:40:49 +01:00
apt_korplug_fast.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_laudanum_webshells.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_miniasp.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_minidionis.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_ms_platinum.yara Microsoft Platinum YARA Rules 2016-04-27 13:36:39 +02:00
apt_naikon.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_nanocore_rat.yar Nano core Rule 2016-04-25 10:26:46 +02:00
apt_onhat_proxy.yar Signature Update 2016-05-13 06:06:18 -06:00
apt_op_cleaver.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_passthehashtoolkit.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_poisonivy_gen3.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_poisonivy.yar Signature Update 2016-05-13 06:06:18 -06:00
apt_poseidon_group.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_prikormka.yar ESET: Operation Groundbait, Prikormka malware 2016-05-18 09:34:49 -06:00
apt_project_m.yar Signature Update 2016-04-01 16:51:30 +02:00
apt_putterpanda.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_quarkspwdump.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_rocketkitten_keylogger.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_ruag.yar RUAG APT Case YARA Signatures 2016-05-24 07:29:20 -06:00
apt_rwmc_powershell_creddump.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_scanbox_deeppanda.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_seaduke_unit42.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_shamoon.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_skeletonkey.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_snowglobe_babar.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_sofacy_dec15.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_sofacy_fysbis.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_sofacy_xtunnel_bundestag.yar Signature Update 2016-05-13 06:06:18 -06:00
apt_sphinx_moth.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_terracotta_liudoor.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_terracotta.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_threatgroup_3390.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_tidepool.yar Danti and SVCMONDR Malware Rules 2016-05-25 16:14:11 -06:00
apt_turbo_campaign.yar Derusbi ELF / Win32 Turbo Campaign 2016-02-29 20:32:42 +01:00
apt_unit78020_malware.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_volatile_cedar.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_waterbug.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_webshell_chinachopper.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_wildneutron.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_winnti.yar signatures > yara 2016-02-15 12:31:27 +01:00
apt_woolengoldfish.yar signatures > yara 2016-02-15 12:31:27 +01:00
cn_pentestset_scripts.yar signatures > yara 2016-02-15 12:31:27 +01:00
cn_pentestset_tools.yar False Positive with old mstsc 2016-03-23 10:05:57 +01:00
cn_pentestset_webshells.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_antifw_installrex.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_bernhard_pos.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_buzus_softpulse.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_cmstar.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_cryptowall_svg.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_dexter_trojan.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_dridex_xml.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_enfal.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_fareit.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_kins_dropper.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_kraken_bot1.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_locky.yar Locky Ransomware 2016-02-17 18:03:58 +01:00
crime_malumpos.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_malware_generic.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_mikey_trojan.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_petya_ransom.yar False Positive Reduction 2016-04-27 13:36:17 +02:00
crime_phish_gina_dec15.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_rombertik_carbongrabber.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_shifu_trojan.yar signatures > yara 2016-02-15 12:31:27 +01:00
crime_upatre_oct15.yar signatures > yara 2016-02-15 12:31:27 +01:00
exploit_cve_2015_1674.yar signatures > yara 2016-02-15 12:31:27 +01:00
exploit_cve_2015_1701.yar signatures > yara 2016-02-15 12:31:27 +01:00
exploit_cve_2015_2426.yar signatures > yara 2016-02-15 12:31:27 +01:00
exploit_uac_elevators.yar signatures > yara 2016-02-15 12:31:27 +01:00
gen_ace_with_exe.yar signatures > yara 2016-02-15 12:31:27 +01:00
gen_cn_hacktool_scripts.yar signatures > yara 2016-02-15 12:31:27 +01:00
gen_cn_hacktools.yar False Positives 2016-02-29 13:46:21 +01:00
gen_cn_webshells.yar Signature Updates 2016-04-20 09:26:09 +02:00
gen_faked_versions.yar signatures > yara 2016-02-15 12:31:27 +01:00
gen_gpp_cpassword.yar signatures > yara 2016-02-15 12:31:27 +01:00
gen_kerberoast.yar Kerberoast 2016-05-24 07:28:42 -06:00
gen_metasploit_loader_rsmudge.yar Metasploit Loader by RSMudge 2016-04-21 10:31:41 +02:00
gen_nopowershell.yar No Powershell 2016-05-24 07:28:29 -06:00
gen_powerkatz.yar signatures > yara 2016-02-15 12:31:27 +01:00
gen_powershell_empire.yar signatures > yara 2016-02-15 12:31:27 +01:00
gen_regsrv32_issue.yar Regsvr32 issue signature 2016-04-26 10:05:17 +02:00
gen_tempracer.yar Signature Update 2016-04-01 16:51:30 +02:00
gen_thumbs_cloaking.yar signatures > yara 2016-02-15 12:31:27 +01:00
gen_winshells.yar Signature Update 2016-04-01 16:51:30 +02:00
general_cloaking.yar signatures > yara 2016-02-15 12:31:27 +01:00
general_officemacros.yar signatures > yara 2016-02-15 12:31:27 +01:00
generic_anomalies.yar False Positive Reduction 2016-04-27 13:36:17 +02:00
generic_cryptors.yar signatures > yara 2016-02-15 12:31:27 +01:00
generic_dumps.yar signatures > yara 2016-02-15 12:31:27 +01:00
generic_exe2hex_payload.yar signatures > yara 2016-02-15 12:31:27 +01:00
pup_lightftp.yar signatures > yara 2016-02-15 12:31:27 +01:00
spy_equation_fiveeyes.yar signatures > yara 2016-02-15 12:31:27 +01:00
spy_querty_fiveeyes.yar signatures > yara 2016-02-15 12:31:27 +01:00
spy_regin_fiveeyes.yar signatures > yara 2016-02-15 12:31:27 +01:00
thor_inverse_matches.yar Signature Updates 2016-04-20 09:26:09 +02:00
thor-hacktools.yar dnscat2 hacktool 2016-05-18 09:34:18 -06:00
thor-webshells.yar False Positive Fixes 2016-04-26 10:04:19 +02:00
threat_lenovo_superfish.yar signatures > yara 2016-02-15 12:31:27 +01:00