Update zeek_dns_suspicious_zbit_flag.yml · 7dc0facf05 - blue-team-tools - GreySec Git

security-tools/blue-team-tools

Update zeek_dns_suspicious_zbit_flag.yml

This commit is contained in:

Nate Guagenti

2022-02-24 20:03:56 -05:00

committed by

GitHub

parent 878df636e2

commit 7dc0facf05

1 changed files with 1 additions and 1 deletions

									
										rules/network/zeek/zeek_dns_suspicious_zbit_flag.yml
									
		+1
		-1
	
												View File
												
				@@ -38,7 +38,7 @@ detection:

				      - 'NS'

				      - 'ns'

				      - 'MX'

				      - 'MX'

				      - 'mx'

				  exclude_responses:

				    answers|endswith: '\\x00'

				  exclude_netbios: