Eugeny Ablesov
|
f5eee854f8
|
Update scheme.sql
pymisp warning fix
|
2023-05-30 15:02:52 +03:00 |
|
Eugeny Ablesov
|
f0dc4dfbad
|
Update requirements.txt
Fix:
pymisp - use older version to keep code compatibility
sqlalchemy - use 1.4 latest build (api 2.0 incompatible with codebase)
M2Crypto - removed (not used)
pyOpenSSL - removed (not used)
|
2023-05-30 15:01:30 +03:00 |
|
besendorf
|
5b607d47d7
|
add all ipv6 multicast adresses
I noticed some ff02:... addresses in my reports. Those should be whitelisted
ff00::/8 are all ipv6 multicast addresses. See rfc5156 2.13
|
2022-07-07 21:23:29 +02:00 |
|
PlazzmiK
|
ca980a74a3
|
Added six - Fixes issue #93
FIX for issue #93 :
ImportError: cannot import name 'collections_abc' from 'six.moves' (unkown location)
|
2022-02-16 20:14:51 +01:00 |
|
Félix Aimé
|
e582f5a3c2
|
Update iocs.json
|
2021-08-05 09:26:21 +02:00 |
|
Félix Aime
|
8e09d4e1c8
|
More code modification regarding MISP integration
|
2021-06-10 18:37:40 +02:00 |
|
Félix Aime
|
73ee7a280b
|
Some modifications, still need tests and debug
|
2021-06-08 20:11:51 +02:00 |
|
Félix Aimé
|
c1b8f4a447
|
Merge pull request #70 from JulAkx/misp
New Feature : Import IoCs from an added MISP instance.
|
2021-06-06 11:08:35 +02:00 |
|
Félix Aimé
|
cb7aeb2721
|
Update iocs.json
Adding IOCs from the ESET report. Thanks guys.
Report: https://www.welivesecurity.com/wp-content/uploads/2021/05/eset_android_stalkerware.pdf
|
2021-05-31 20:21:53 +02:00 |
|
Julien DEPAILLAT
|
24be446598
|
New Feature : It is now possible to import IoCs from an added MISP instance.
|
2021-05-10 16:08:58 +02:00 |
|
Félix Aimé
|
033d751e31
|
Update iocs.json
|
2021-05-04 10:21:29 +02:00 |
|
Félix Aimé
|
d41ad28c25
|
Update iocs.json
|
2021-04-30 16:51:24 +02:00 |
|
Félix Aimé
|
bf8edb0283
|
Update iocs.json
|
2021-04-29 20:24:09 +02:00 |
|
Félix Aimé
|
6bca89630e
|
Update iocs.json
|
2021-04-24 22:40:43 +02:00 |
|
Félix Aimé
|
c69f2a3d6e
|
Update iocs.json
|
2021-04-24 11:28:05 +02:00 |
|
Félix Aimé
|
d5ff62590a
|
Update iocs.json
|
2021-04-23 15:06:19 +02:00 |
|
Félix Aimé
|
1923348538
|
Update iocs.json
|
2021-04-23 14:00:40 +02:00 |
|
Félix Aimé
|
022f23be1c
|
Update iocs.json
|
2021-04-23 11:53:57 +02:00 |
|
Félix Aimé
|
8f006e4ecc
|
Update iocs.json
|
2021-04-23 10:05:46 +02:00 |
|
Félix Aimé
|
24e35d9ef5
|
Update iocs.json
|
2021-04-21 15:35:20 +02:00 |
|
Félix Aimé
|
53271bbb33
|
Update iocs.json
|
2021-04-20 19:04:29 +02:00 |
|
Félix Aimé
|
e2f5801a99
|
Update iocs.json
|
2021-04-14 15:11:41 +02:00 |
|
Félix Aimé
|
8ac1beba9d
|
Update whitelist.json
|
2021-04-09 18:21:39 +02:00 |
|
Félix Aimé
|
16a4a3675a
|
Update iocs.json
|
2021-04-09 18:19:57 +02:00 |
|
Félix Aimé
|
32e04398fe
|
Update iocs.json
|
2021-03-25 13:48:54 +01:00 |
|
Félix Aimé
|
a98679a923
|
Update whitelist.json
|
2021-03-11 20:40:05 +01:00 |
|
Félix Aimé
|
6d5389370c
|
Update iocs.json
|
2021-03-01 16:59:38 +01:00 |
|
Félix Aimé
|
6b29daad59
|
Update iocs.json
|
2021-03-01 16:52:31 +01:00 |
|
Félix Aimé
|
85228e77f7
|
Adding new IOCs
|
2021-02-16 19:52:36 +01:00 |
|
Félix Aime
|
0a7e962e99
|
Adding python-whois
|
2021-02-16 17:10:23 +01:00 |
|
Félix Aimé
|
f68ed73c1b
|
Update iocs.json
|
2021-02-16 16:45:15 +01:00 |
|
Félix Aimé
|
397bba1e79
|
Update iocs.json
|
2021-02-16 16:40:46 +01:00 |
|
Félix Aimé
|
950db64729
|
Update whitelist.json
|
2021-02-16 15:56:21 +01:00 |
|
Félix Aimé
|
1e44d252af
|
Update iocs.json
|
2021-02-11 14:06:59 +01:00 |
|
Félix Aimé
|
397b8dfc69
|
Update with new domains.
|
2021-02-09 10:19:40 +01:00 |
|
Félix Aimé
|
d2ee1caa8b
|
Update iocs.json
|
2021-01-28 19:54:30 +01:00 |
|
Félix Aimé
|
b00736d7fa
|
Update iocs.json
|
2021-01-25 15:10:02 +01:00 |
|
Félix Aimé
|
7377210f07
|
Update on FP snort rule.
|
2021-01-25 15:04:32 +01:00 |
|
Félix Aimé
|
d3457a18a9
|
Update with DomesticKitten domains
Related to https://twitter.com/bl4ckh0l3z/status/1353049745392979968
|
2021-01-25 09:31:31 +01:00 |
|
Félix Aimé
|
e235421323
|
Deleting a snort rule which does some FP on Android/Galaxy.
|
2021-01-21 20:45:57 +01:00 |
|
Félix Aime
|
0cedade4b8
|
Adding lencr.org domain
|
2021-01-20 20:24:07 +01:00 |
|
Félix Aimé
|
fd862c2688
|
Update whitelist.json
|
2021-01-14 11:21:53 +01:00 |
|
Félix Aimé
|
313f718052
|
Update whitelist.json
|
2021-01-14 11:10:37 +01:00 |
|
Félix Aimé
|
7a67ddac24
|
Update whitelist.json
|
2021-01-14 11:05:03 +01:00 |
|
Félix Aimé
|
69aede5bbe
|
Update iocs.json
|
2021-01-13 21:34:44 +01:00 |
|
Félix Aimé
|
9b0761e5cf
|
Update with MDNS snort rule + new fancy TLDs
|
2021-01-13 21:19:09 +01:00 |
|
Félix Aime
|
da2d3c049b
|
Adding IOCs from https://research.checkpoint.com/2021/going-rogue-a-mastermind-behind-android-malware-returns-with-a-new-rat/
|
2021-01-13 09:25:56 +01:00 |
|
Félix Aimé
|
2d02f98471
|
Update whitelist.json
|
2021-01-06 21:58:29 +01:00 |
|
Félix Aime
|
68bcf39451
|
Merge branch 'main' of https://github.com/KasperskyLab/TinyCheck into main
|
2021-01-06 21:19:32 +01:00 |
|
Félix Aime
|
8f56909e4f
|
Adding the export of PDF report
|
2021-01-06 21:19:03 +01:00 |
|