8a8387c43e
SQL Injection error message patterns
...
Rule file that detects error messages from different DB providers that would occur during SQL Injection probing
2017-11-27 22:52:17 +01:00
6b8a5aea4a
Added vhost field to web rules
2017-09-17 00:20:17 +02:00
986c9ff9b7
Added field names to first rules
2017-09-12 23:54:04 +02:00
5c465129bd
Fixed rules
...
* Replaced unspecified logsource attribute 'type' with 'category'
* Usage of service 'auth' for linux logs
2017-09-11 00:35:52 +02:00
7ba62b791c
Application security rules
...
* reorganization into separate folder
* adding category
* minor tweaks
2017-08-12 00:43:10 +02:00
1d3b8e58bd
Fixed description
2017-08-06 23:22:31 +02:00
0795d14b41
Spring framework security exceptions rule
2017-08-06 23:21:53 +02:00
f0e6c28e8b
Added Ruby on Rails security-related exceptions rule
2017-08-06 22:57:52 +02:00
98f99cebc0
Added author attribute
2017-08-05 23:56:13 +02:00
f58c1b768b
Django security errors
2017-08-05 00:56:05 +02:00
9fd375c130
Bugfix: Added time frame to correlation rule
2017-03-12 17:11:29 +01:00
2e0632b05f
Rule: Linux: buffer overflows
2017-03-01 08:38:33 +01:00
9c8ed4c0b1
Apache segmentation fault rule
2017-02-28 17:53:06 +01:00
fdbadb8e6e
Rule fix
...
Fixed condition in webshell keyowrd rule.
2017-02-22 22:42:35 +01:00
cd6e24c5ff
Added "logsource" sections and new rule
2017-02-19 00:31:59 +01:00
18fd63f6b7
Levels to low, medium, high, critical
2017-02-16 18:06:22 +01:00
88270fcf2d
Rule review and cleanup
...
* removed unnecessary one element lists from definitions
* converted some lists of one element maps to maps because the resulting
OR linkage would cause wrong result.
2017-02-15 23:53:08 +01:00
04ea201817
New rules and cleanup
2017-02-12 15:50:39 +01:00
a2adb1ddb5
Renamed rule files, new rules
2017-02-10 19:17:02 +01:00
1307a45fd5
Moved rules to a separate directory
2017-02-07 00:44:40 +01:00
Björn Kimminich