[Emerging-updates] Daily Ruleset Update Summary 06/21/2013

Will Metcalf wmetcalf at emergingthreatspro.com
Fri Jun 21 16:08:20 HADT 2013


 [***]          Summary:          [***]

 15 new Open rules. 16 new Pro rules (15/1). ELF in Post, Rawin EK, Drive
DDoS, Poison Ivy.

 [+++]          Added rules:          [+++]

  Open:
  2017040 - ET CURRENT_EVENTS Rawin Exploit Kit Landing URI Struct
(current_events.rules)
  2017041 - ET CURRENT_EVENTS Rawin Exploit Kit Jar 1.7.x
(current_events.rules)
  2017042 - ET CURRENT_EVENTS Rawin Exploit Kit Jar 1.6 (Old)
(current_events.rules)
  2017043 - ET CURRENT_EVENTS Rawin Exploit Kit Jar 1.6 (New)
(current_events.rules)
  2017044 - ET CURRENT_EVENTS Rawin Exploit Kit Jar 1.6 (New)
(current_events.rules)
  2017045 - ET TROJAN Possible Drive DDoS Check-in (trojan.rules)
  2017046 - ET TROJAN Drive Receiving GET DDoS instructions (trojan.rules)
  2017047 - ET TROJAN Drive Receiving POST1 DDoS instructions (trojan.rules)
  2017048 - ET TROJAN Drive Receiving POST2 DDoS instructions (trojan.rules)
  2017049 - ET TROJAN Drive Receiving IP DDoS instructions (trojan.rules)
  2017050 - ET TROJAN Drive Receiving IP2 DDoS instructions (trojan.rules)
  2017051 - ET TROJAN Drive Receiving UDP DDoS instructions (trojan.rules)
  2017052 - ET TROJAN Poison Ivy [victim beacon] (trojan.rules)
  2017053 - ET TROJAN Poison Ivy [server response] (trojan.rules)
  2017054 - ET WEB_SERVER WebShell Generic - ELF File Uploaded
(web_server.rules)

  Pro:
  2806543 - ETPRO TROJAN Trojan-PSW.Win32.QQPass.wyk Checkin (trojan.rules)
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.emergingthreats.net/pipermail/emerging-updates/attachments/20130621/c939320d/attachment.html>


More information about the Emerging-updates mailing list