 frack113
|
01dc930c17
|
Change status for old rules
|
2021-11-27 11:33:14 +01:00 |
|
|
frack113
|
b81b5666ce
|
fix field name
|
2021-11-23 18:47:42 +01:00 |
|
|
frack113
|
1cfca93354
|
Missing status in rules (#2284)
* add missing status
|
2021-11-19 22:32:26 +01:00 |
|
|
Florian Roth
|
c6564908ef
|
rule: Sitecore Pre-Auth RCE CVE-2021-42237
|
2021-11-17 19:01:35 +01:00 |
|
|
frack113
|
f8574fcd81
|
Add cve tags
|
2021-10-25 18:40:50 +02:00 |
|
|
Florian Roth
|
30213dba87
|
Merge pull request #2132 from SigmaHQ/rule-devel
New Rules
|
2021-10-09 19:19:45 +02:00 |
|
|
Florian Roth
|
195db4cffc
|
refactor: made Apache RCE rule more robust
|
2021-10-09 18:48:02 +02:00 |
|
|
frack113
|
930d2d4223
|
fix id
|
2021-10-06 17:53:16 +02:00 |
|
|
frack113
|
dfd316c0ce
|
Add web_iis_tilt_shortname_scan.yml
|
2021-10-06 17:46:15 +02:00 |
|
|
Florian Roth
|
7cf01c2f0c
|
extended CVE-2021-41773 rule
|
2021-10-06 12:43:10 +02:00 |
|
|
Florian Roth
|
5576f50470
|
fix: title, add my name
|
2021-10-05 17:35:09 +02:00 |
|
|
Florian Roth
|
482df0a0ad
|
rule: Apache Vuln CVE-2021-41773
|
2021-10-05 17:33:37 +02:00 |
|
|
Florian Roth
|
93bff7f49d
|
docs: new ID
|
2021-09-25 11:37:39 +02:00 |
|
|
Florian Roth
|
31ef53738d
|
refactor: removed old Joomla rules, made generic path traversal
|
2021-09-25 11:37:02 +02:00 |
|
|
Sittikorn S
|
7c8df0eb55
|
Update web_cve_2021_22005_vmware_file_upload.yml
|
2021-09-25 08:05:00 +07:00 |
|
|
Sittikorn S
|
dea89ad324
|
Update and rename web_cve_2021_22005_vmware_file_upload to web_cve_2021_22005_vmware_file_upload.yml
|
2021-09-24 21:35:04 +07:00 |
|
|
Sittikorn S
|
f903640b73
|
Update web_cve_2021_22005_vmware_file_upload
|
2021-09-24 21:29:43 +07:00 |
|
|
Sittikorn S
|
16452ca80e
|
Create web_cve_2021_22005_vmware_file_upload
|
2021-09-24 21:21:09 +07:00 |
|
|
frack113
|
934e391159
|
fix filename
|
2021-09-23 14:51:59 +02:00 |
|
|
frack113
|
44feb3ddf6
|
fix filename
|
2021-09-23 14:46:13 +02:00 |
|
|
frack113
|
89776b8c14
|
fix filename
|
2021-09-23 14:44:51 +02:00 |
|
|
frack113
|
8b5f62bdb7
|
fix filename
|
2021-09-23 14:41:16 +02:00 |
|
|
frack113
|
c029e62c64
|
fix filename
|
2021-09-23 14:37:34 +02:00 |
|
|
Florian Roth
|
bb2e6acd40
|
Merge pull request #1926 from pbssubhash/master
Adding CVE's Exploitation attempt detection: Year - 2010
|
2021-09-23 14:08:15 +02:00 |
|
|
frack113
|
3c906b52a0
|
fix filename
|
2021-09-22 16:21:07 +02:00 |
|
|
frack113
|
6dbc369eb5
|
Update web_cve_2021_40539_adselfservice.yml
|
2021-09-20 15:51:21 +02:00 |
|
|
frack113
|
4424bc9c5d
|
Update web_cve_2021_40539_adselfservice.yml
|
2021-09-20 13:20:39 +02:00 |
|
|
Florian Roth
|
56069a2196
|
Update web_cve_2021_40539_adselfservice.yml
|
2021-09-20 13:07:31 +02:00 |
|
|
Tobias Michalski
|
2b843e58ee
|
fix: added references
|
2021-09-20 12:28:47 +02:00 |
|
|
Tobias Michalski
|
79d2144424
|
feat: Rule for ADSelfService cve_2021_40539
|
2021-09-20 12:26:46 +02:00 |
|
|
Sittikorn S
|
13553ef917
|
Update web_cve_2021_40539_manageengine_adselfservice_exploit.yml
|
2021-09-17 09:53:12 +07:00 |
|
|
Sittikorn S
|
9576663789
|
Update web_cve_2021_40539_manageengine_adselfservice_exploit.yml
Edit My Teammate
|
2021-09-13 15:23:38 +07:00 |
|
|
pbssubhash
|
4ae1d41983
|
Corrected Rules - Logsource
|
2021-09-13 10:16:02 +05:30 |
|
|
pbssubhash
|
276cb59756
|
yaml to yml ext
|
2021-09-12 18:41:56 +05:30 |
|
|
pbssubhash
|
5d654c4518
|
Changing title to camelcase
|
2021-09-12 18:36:20 +05:30 |
|
|
pbssubhash
|
1f7d239bf9
|
Name change
|
2021-09-12 18:24:35 +05:30 |
|
|
pbssubhash
|
014ac2d24e
|
Modifying Rules
|
2021-09-12 18:09:14 +05:30 |
|
|
pbssubhash
|
2b228e5f33
|
Merge branch 'SigmaHQ:master' into master
|
2021-09-12 18:08:42 +05:30 |
|
|
Sittikorn S
|
0806e4ccd2
|
Update web_cve_2021_40539_manageengine_adselfservice_exploit.yml
|
2021-09-10 11:30:51 +07:00 |
|
|
Sittikorn S
|
a6a3f6b392
|
Create web_cve_2021_40539_manageengine_adselfservice_exploit.yml
|
2021-09-10 10:31:11 +07:00 |
|
|
pbssubhash
|
10dd702f94
|
Merge branch 'SigmaHQ:master' into master
|
2021-09-09 22:31:50 +05:30 |
|
|
Florian Roth
|
a5c6bbe04d
|
Merge pull request #1946 from SigmaHQ/rule-devel
rule: ProxyToken CVE-2021-33766 Exchange
|
2021-08-30 17:39:37 +02:00 |
|
|
Florian Roth
|
af9392ba0f
|
refactor: add 500 status code in selection2
to avoid FPs with exploitation attempts
|
2021-08-30 16:12:42 +02:00 |
|
|
Florian Roth
|
4a4966af77
|
rule: ProxyToken CVE-2021-33766 Exchange
|
2021-08-30 15:47:53 +02:00 |
|
|
frack113
|
718b44c38a
|
fix List values must be strings or numbers (46)
|
2021-08-29 08:57:25 +02:00 |
|
|
frack113
|
bdb8dbc0de
|
fix title Joomla JaShowcase
|
2021-08-25 20:04:38 +02:00 |
|
|
frack113
|
39daebffa4
|
Cleanup
|
2021-08-25 20:02:38 +02:00 |
|
|
pbssubhash
|
3f27295e64
|
Stupid Author field
|
2021-08-25 21:47:33 +05:30 |
|
|
pbssubhash
|
1bb99b4ece
|
Readd
|
2021-08-25 21:44:23 +05:30 |
|
|
pbssubhash
|
e3331a4d0a
|
Cleanup
|
2021-08-25 21:40:32 +05:30 |
|