January 2010 Archives by thread
Starting: Fri Jan 1 03:27:39 EDT 2010
Ending: Sun Jan 31 16:00:13 EDT 2010
Messages: 706
- [Emerging-Sigs] [Snort-users] Suricata IDS Available for Download!
Edward Bjarte Fjellskål
- [Emerging-Sigs] [Snort-users] Suricata IDS Available for Download!
Matt Jonkman
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Suricata Development
Matt Jonkman
- [Emerging-Sigs] another ip blocklist: ssh brute force ips
David Glosser
- [Emerging-Sigs] December Sigs Contest Winner
Matt Jonkman
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Emerging Threats Weekly Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] ET WEB_SPECIFIC_APPS rules (multiple SQLi + LFI)
Matt Jonkman
- [Emerging-Sigs] FakeAV Landing Page, updated
evilghost at packetmail.net
- [Emerging-Sigs] StillSecure: 10 New Signatures - Dec - 31 - 2009
Matt Jonkman
- [Emerging-Sigs] Contest Enhancement
Matt Jonkman
- [Emerging-Sigs] More FakeAV sigs
Packet Hack
- [Emerging-Sigs] Suricata IDS Available for Download! (Matt Jonkman)
Pedro Marinho
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] More FakeAV sigs
evilghost at packetmail.net
- [Emerging-Sigs] unescaped : in sid 2010621 (SQL Injection Attempt (Agent CZ32ts)
Kevin Ross
- [Emerging-Sigs] sshbl.org SSH - Blacklist Sigs
mex
- [Emerging-Sigs] 2 Sigs: Cisco WLAN Controller DOS & Wapiti HTTP Server Scanner
Kevin Ross
- [Emerging-Sigs] 4 More Cisco Sigs
Kevin Ross
- [Emerging-Sigs] 1 more Cisco Sig (BGP Dos)
Kevin Ross
- [Emerging-Sigs] sig repost (Cisco WLAN sig and Wapiti)
Kevin Ross
- [Emerging-Sigs] ET EXPLOIT IE IFRAME Exploit -- SID 2001401
Mike Cox
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] ET EXPLOIT Stealth attempt to execute VBScript/Javascript code - SIDs 2001102 2001101
Mike Cox
- [Emerging-Sigs] Rule Performance (Serv-U directory traversal vulnerability)
Kevin Ross
- [Emerging-Sigs] Proposed update to "ET POLICY Possible Ecard Trojan download"
David.R.Wharton at regions.com
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Proposed Sigs for Malicious / Metasploit-infected PDFs
mex
- [Emerging-Sigs] Proposed Sigs for Malicious / Metasploit-infected PDFs
mex
- [Emerging-Sigs] SSH - Brute-Force Sig
mex
- [Emerging-Sigs] Possible sigs to disable or remove?
Kevin Ross
- [Emerging-Sigs] Old Rules which possible can be retired
Matt Jonkman
- [Emerging-Sigs] More Rules to Disable/Retire
Kevin Ross
- [Emerging-Sigs] Malware samples
Jason Lewis
- [Emerging-Sigs] More bad zip file attachments
Matt Jonkman
- [Emerging-Sigs] ET DROP Known Bot C&C Traffic rules
David.R.Wharton at regions.com
- [Emerging-Sigs] Disable/retire
Matt Jonkman
- [Emerging-Sigs] Old Rules which possible can be retired
Matt Jonkman
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] more good disable candidate sigs
Kevin Ross
- [Emerging-Sigs] More possible disable/retire sigs
Kevin Ross
- [Emerging-Sigs] IIS Parsing cve Reference fix
Kevin Ross
- [Emerging-Sigs] SidReporter -where's my uid
Thomas Mueller
- [Emerging-Sigs] StillSecure: 10 New Signatures -Jan - 08 - 2010
signatures
- [Emerging-Sigs] Proposed Sigs for Malicious /Metasploit-infected PDFs
travis wayne
- [Emerging-Sigs] nginx pdf sig modification to use flowbit
Kevin Ross
- [Emerging-Sigs] more possible disable sigs
Kevin Ross
- [Emerging-Sigs] Proposed signature; ICMP scan precursor "@hello ???"
evilghost at packetmail.net
- [Emerging-Sigs] Typo on rule 20010631
Jack Pepper
- [Emerging-Sigs] UTF-8/UTF-16 URI encoded shellcode rules
Mike Cox
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] SIG:Windows Live Messenger ViewProfile Buffer Overflow
Kevin Ross
- [Emerging-Sigs] ET TROJAN Generic Dropper Post (FarmTime var) 2010451 -- appears to be a game
Russell Fulton
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Emerging Threats Weekly Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] nginx pdf sig modification to use flowbit
Kevin Ross
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Malwareurl.com Top 30 Update
jason.weir at nhrs.org
- [Emerging-Sigs] repost: 1 new sig and disable/retire options
Kevin Ross
- [Emerging-Sigs] Potential Fake AV Landing Page Request
Mike Cox
- [Emerging-Sigs] SIG:Possible D-Link Multiple Routers HNAP Protocol Security Bypass Attempt
Kevin Ross
- [Emerging-Sigs] Launcher UAS sig (Gozi related)
Darren Spruell
- [Emerging-Sigs] Suricata New Feature Series: Flowint
Matt Jonkman
- [Emerging-Sigs] Looking for a rule...
Mike French
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] snortby
Jules Pagna Disso
- [Emerging-Sigs] snortby
evilghost at packetmail.net
- [Emerging-Sigs] SIGS: FTP Privileged Users Brute Forcing
Kevin Ross
- [Emerging-Sigs] Time to own your rules - PulledPork 0.3.4 Released!
Rodrigo Montoro(Sp0oKeR)
- [Emerging-Sigs] ltdomains? curious? what is this about? 72.232.223.58 HTTP GET /?release=5.2&arch=i386&repo=extras
Michael Scheidell
- [Emerging-Sigs] More inbound malicious attachments
Weir, Jason
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] more possible retire/disable & some moves
Kevin Ross
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Check out my photos on Facebook
Shyaam Sundhar
- [Emerging-Sigs] 4 Sigs: 2 Adobe ActiveX,DLink and Web_server sig
Kevin Ross
- [Emerging-Sigs] thoughts on this sig?
Kevin Ross
- [Emerging-Sigs] SIG:Adobe Reader and Acrobat Forms Data Format Remote Security Bypass
Kevin Ross
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] 13 Sigs
Kevin Ross
- [Emerging-Sigs] sig move
Kevin Ross
- [Emerging-Sigs] improved Cisco WLC sig
Kevin Ross
- [Emerging-Sigs] StillSecure: 10 New Signatures -Jan - 15 - 2010
signatures
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] koobface sigs
David Glosser
- [Emerging-Sigs] tag:session
Kevin Ross
- [Emerging-Sigs] tag:session rule syntax fix needed
Kevin Ross
- [Emerging-Sigs] Metasploit IE cve,2010-0249 module available
Kevin Ross
- [Emerging-Sigs] SIG:Possible CVE-2010-0249 sig
Kevin Ross
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Emerging Threats Weekly Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Proposed Signature; Delphi ICMP echo
evilghost at packetmail.net
- [Emerging-Sigs] AntivirusDoktor2009 rules
Jaime Blasco
- [Emerging-Sigs] chnsystem.com Spyware User-Agent (Update1.0)
Jaime Blasco
- [Emerging-Sigs] Adware.Win32.QvodPlayer
Jaime Blasco
- [Emerging-Sigs] Trojan.Win32.InternetAntivirus
Jaime Blasco
- [Emerging-Sigs] Win32.OnLineGames
Jaime Blasco
- [Emerging-Sigs] ET USER_AGENTS Spyware google-analitid181.com related user agent (My Session)
Jaime Blasco
- [Emerging-Sigs] Fast Browser Search
Jaime Blasco
- [Emerging-Sigs] SogouExplorer
Jaime Blasco
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Malwareurl.com Top 30 Update
jason.weir at nhrs.org
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Proposed Signature, ICMP precursor to scan "=XXXXXXXX"
evilghost at packetmail.net
- [Emerging-Sigs] 6 Sigs
Kevin Ross
- [Emerging-Sigs] sig update HP Snmp.exe buffer overflow
Kevin Ross
- [Emerging-Sigs] sig indows Media Encoder 9 wmex.dll ActiveX GetDetailsString Buffer Overflow
Kevin Ross
- [Emerging-Sigs] Aurora
Jaime Blasco
- [Emerging-Sigs] New Shirts
Matt Jonkman
- [Emerging-Sigs] sig performance fix or disable
Kevin Ross
- [Emerging-Sigs] Surprised by snort classtype...
Guise McAllaster
- [Emerging-Sigs] Proposed Signature, SQL Injection VBulletin 401
evilghost at packetmail.net
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] disable/retire/split rules for PCRE performance
Kevin Ross
- [Emerging-Sigs] SIDs 2010594 & 2010598
evilmhost De Evilz
- [Emerging-Sigs] Proposed Changes to SID 2010664
evilghost at packetmail.net
- [Emerging-Sigs] More Aurora sigs
Matt Jonkman
- [Emerging-Sigs] bothunter blackholeDNS Snort Preprocessor
Kevin Ross
- [Emerging-Sigs] Fake AV URI Request (in.php)
Kevin Ross
- [Emerging-Sigs] Fake AV URI Request (in.php)
Kevin Ross
- [Emerging-Sigs] Fake AV URI Request (in.php)
Kevin Ross
- [Emerging-Sigs] Proposed Signature, FakeAV
evilghost at packetmail.net
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] SIG: HP Power Manager Management Web Server Login Remote Buffer Overflow Attempt
Kevin Ross
- [Emerging-Sigs] SIG: D-Link Router HNAP Protocol Security Bypass Attempt
Kevin Ross
- [Emerging-Sigs] Fake AV URI Request (in.php)
Kevin Ross
- [Emerging-Sigs] Fake AV URI Request (in.php)
Kevin Ross
- [Emerging-Sigs] IMPERSONATOR:kevross333@gmail.com
Kevin Ross
- [Emerging-Sigs] SIG: ET USER_AGENTs from Aurora infection
Kevin Ross
- [Emerging-Sigs] Trojan Check-in - MyApp, possible Aurora infection
Kevin Ross
- [Emerging-Sigs] SIG: ET USER_AGENTs from Aurora infection
Kevin Ross
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] infiltrators
James McQuaid
- [Emerging-Sigs] colon unescaped
Wolvee
- [Emerging-Sigs] one more
Wolvee
- [Emerging-Sigs] 3 Sigs:Windows Live Messenger & HP OpenView Network Node Manager BOF
Kevin Ross
- [Emerging-Sigs] StillSecure: 10 New Signatures -Jan - 22 - 2010
signatures
- [Emerging-Sigs] SIG: With fix to submitted HP OpenView Network Node Manager Possible False Neg Fix
Kevin Ross
- [Emerging-Sigs] [OT] Swinedroid – the new Snort Monitoring tool for Android
Rodrigo Montoro(Sp0oKeR)
- [Emerging-Sigs] sid 2010630 missing classtype
Kayvan Javid
- [Emerging-Sigs] User Agent for PHP Scanner
Jack Pepper
- [Emerging-Sigs] Internet Explorer 6
Jack Pepper
- [Emerging-Sigs] DNS FastFlux/Lookups
Kevin Ross
- [Emerging-Sigs] Sharing SID "hits"
evilghost at packetmail.net
- [Emerging-Sigs] Sharing SID "hits"
Kayvan Javid
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] bad cvsweb reference location
waldo kitty
- [Emerging-Sigs] Performance improvements on IP only rules
David Wharton
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Emerging Threats Weekly Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] suspicious syslog error from php
Thomas Mueller
- [Emerging-Sigs] FaceCooker
Jaime Blasco
- [Emerging-Sigs] Suspicious User-Agent Rustock related
Jaime Blasco
- [Emerging-Sigs] wshost32
Jaime Blasco
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] FP: ET TROJAN - Possible Zeus/Perkesh (.bin) configuration download Sig ID 2010348
Russell Fulton
- [Emerging-Sigs] 1/8 and 27/8 allocated to APNIC
Rodrigo Montoro(Sp0oKeR)
- [Emerging-Sigs] Distributed snort management
Jason Lewis
- [Emerging-Sigs] Malwareurl.com Top 30 Update
jason.weir at nhrs.org
- [Emerging-Sigs] Malwareurl.com Top 30 Update
Weir, Jason
- [Emerging-Sigs] Malwareurl.com Top 45 Update
jason.weir at nhrs.org
- [Emerging-Sigs] Malwareurl.com Top 45 Update
Weir, Jason
- [Emerging-Sigs] Proposed Signature - e107 v.0.7.17 backdoor
evilghost at packetmail.net
- [Emerging-Sigs] FP's with ET USER_AGENTS Suspicious User-Agent Beginning with digits - Likely spyware/trojan
Eoin Miller
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Mariposa botnet signature false alarms?
lang zi
- [Emerging-Sigs] Mariposa botnet signature false alarms?
lang zi
- [Emerging-Sigs] SIG:Cisco ASA Appliance Clientless SSL VPN HTML Rewriting Security Bypass Attempt
Kevin Ross
- [Emerging-Sigs] 2009024 Conficker reporting FP
Rick Chisholm
- [Emerging-Sigs] Proposed Signature; Non-Escaping backslash in HTTP user-agent
evilghost at packetmail.net
- [Emerging-Sigs] ET WEB_SERVER PHP Scan Precursor
Mike Cox
- [Emerging-Sigs] Duplication between SID 2010443 and SID 2010452
evilghost at packetmail.net
- [Emerging-Sigs] Huge increase in SPAM
Weir, Jason
- [Emerging-Sigs] Question about SIG 2008660 - Torpig
Paul Schmehl
- [Emerging-Sigs] Huge increase in SPAM
Weir, Jason
- [Emerging-Sigs] Proposed Signatures - Russian Malware Bundle C&C Response
evilghost at packetmail.net
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Zeus? Virut? Krap? FakeAV?
Packet Hack
- [Emerging-Sigs] 2 sigs on Benchmarking Tools-UA (JMeter+ab)
mex
- [Emerging-Sigs] Invalid pcre?
Paul Schmehl
- [Emerging-Sigs] Possible Sid 2010064 ET MALWARE Buzus Posting Data FP Conditions
Kevin Ross
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Porn Classification
Matt Olney
- [Emerging-Sigs] Trojan.Win32.InternetAntivirus
Jaime Blasco
- [Emerging-Sigs] American Bankers Association version of Zeus Bot / Zbot
Rodrigo Montoro(Sp0oKeR)
- [Emerging-Sigs] Proposed Signature - Oficla Check-In (DHL SPAM/Malware Campaign)
evilghost at packetmail.net
- [Emerging-Sigs] SIG: Cisco One and updated sigs
Kevin Ross
- [Emerging-Sigs] Possibly Bad Sig Idea, No Connection After Successful DNS
Kevin Ross
- [Emerging-Sigs] SIG:WordPress wp-admin/admin.php Module Configuration Security Bypass Attempt
Kevin Ross
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] CVE ID updates
Deapesh Misra
- [Emerging-Sigs] Proposed Signature - Pinkslipbot Trojan
Nate Hausrath
- [Emerging-Sigs] multiple new sigs
Kevin Ross
- [Emerging-Sigs] Rule for exe.exe download
Mike Cox
- [Emerging-Sigs] Duplicate Rules for sdfg.jar
Chris Green
- [Emerging-Sigs] Some thoughts on NMAP thresholding
Jerry
- [Emerging-Sigs] Help
Paul Schmehl
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Proposed Signature - Pinkslipbot Trojan
Joel Esler
- [Emerging-Sigs] Update to 2003511
Paul Schmehl
- [Emerging-Sigs] StillSecure: 10 New Signatures -Jan 30th, 2010
signatures
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Emerging Threats Weekly Signature Changes
emerging at emergingthreats.net
- [Emerging-Sigs] Emerging Threats Daily Signature Changes
emerging at emergingthreats.net
Last message date:
Sun Jan 31 16:00:13 EDT 2010
Archived on: Sun Jan 31 16:03:49 EDT 2010
This archive was generated by
Pipermail 0.09 (Mailman edition).