Skip to content
/ fireeye-sunburst Public

Modified FireEye Signatures the "Sunburst" exploit/vulnerabilty.

License

BSD-2-Clause license
1 star 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

quadrantsec/fireeye-sunburst

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
fireeye-sunburst.rules
fireeye-sunburst.rules
 
 

Repository files navigation

fireeye-sunburst

These Suricata/Snort signatures are modified version supplied by the Fireeye Team for "Sunburst". The original signatures are at https://github.com/fireeye/sunburst_countermeasures

Modifications:

  • Signature ID do not interfere with Cisco Talos or Emerging Threats IDs.
  • Fireeye signatures lacked a "classtype". A class type of "trojan-activity".
  • Added "reference" data.

About

Modified FireEye Signatures the "Sunburst" exploit/vulnerabilty.

Resources

Readme

License

BSD-2-Clause license
Activity
Custom properties

Stars

1 star

Watchers

0 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •